Siemens SIMATIC TeleControl DNP3 Configuration Manual
  1. Manuals
  2. Brands
  3. Siemens Manuals
  4. Control Unit
  5. SIMATIC NET CP 1243-1 DNP3
  6. Configuration manual
Siemens SIMATIC TeleControl DNP3 Configuration Manual

Siemens SIMATIC TeleControl DNP3 Configuration Manual

Hide thumbs Also See for SIMATIC TeleControl DNP3:
Table of Contents

Advertisement

Quick Links

SIMATIC NET
TeleControl
Configuration - DNP3
Configuration Manual
Configuration and diagnostics
11/2018
C79000-G8976-C508-01
___________________
Preface
___________________
Functions and requirements
___________________
Communication mechanisms
___________________
Configuration
___________________
Diagnostics
___________________
OUC program blocks (CP)
SINEMA Remote Connect
___________________
(CP)
___________________
WBM of the TIM 1531 IRC
___________________
Bibliography
1
2
3
4
A
B
C
D

Advertisement

Table of Contents
loading

Related Manuals for Siemens SIMATIC TeleControl DNP3

Summary of Contents for Siemens SIMATIC TeleControl DNP3

  • Page 1 ___________________ Preface ___________________ Functions and requirements ___________________ SIMATIC NET Communication mechanisms ___________________ Configuration TeleControl Configuration - DNP3 ___________________ Diagnostics ___________________ OUC program blocks (CP) Configuration Manual SINEMA Remote Connect ___________________ (CP) ___________________ WBM of the TIM 1531 IRC ___________________ Bibliography Configuration and diagnostics 11/2018 C79000-G8976-C508-01...
  • Page 2 Note the following: WARNING Siemens products may only be used for the applications described in the catalog and in the relevant technical documentation. If products and components from other manufacturers are used, these must be recommended or approved by Siemens. Proper transport, storage, installation, assembly, commissioning, operation and maintenance are required to ensure that the products operate safely and without any problems.

  • Page 3: Preface

    Preface Validity of this manual This manual is valid for all communications modules of the SIMATIC NET range listed below which support the telecontrol protocol DNP3. Note the structure of the documentation. Supported modules You can find the devices for which the configuration manual is valid in the section Communications modules (Page 11).
  • Page 4 New in this release First issue Current manual release on the Internet You will also find the current version of this manual on the Internet pages of Siemens Industry Online Support: Link: (https://support.industry.siemens.com/cs/ww/en/ps/21764/man) Required experience Knowledge in the following areas is required for configuration and diagnostics of the devices: ●...
  • Page 5 Siemens’ products and solutions undergo continuous development to make them more secure. Siemens strongly recommends that product updates are applied as soon as they are available and that the latest product versions are used. Use of product versions that are no longer supported, and failure to apply the latest updates may increase customers’...
  • Page 6 Preface Configuration - DNP3 Configuration Manual, 11/2018, C79000-G8976-C508-01...

  • Page 7: Table Of Contents

    Table of contents Preface ..............................3 Functions and requirements ........................11 Communications modules ...................... 11 Configuration examples ......................12 Usable CPUs .......................... 15 Software requirements ......................15 Performance data and configuration limits ................16 1.5.1 TIM 1531 IRC .......................... 16 1.5.2 TIM 4R-IE DNP3 / TIM 3V-IE DNP3 ..................
  • Page 8 Table of contents 3.6.1.1 Dedicated line ........................43 3.6.1.2 Dialup network ........................47 3.6.1.3 Transmission settings ......................51 Configuring WAN networks ....................51 DNP3 parameters of the interfaces..................53 3.8.1 Transmission settings – DNP3 ....................53 3.8.2 Settings DNP3 master ......................55 3.8.3 Settings DNP3 station ......................
  • Page 9 Table of contents 3.20.2 Datapoint types ........................109 3.20.3 "General" tab ......................... 112 3.20.4 Rules for configuring the data point index: ................113 3.20.5 Process image, type of transmission, event classes ............113 3.20.6 Read cycle ..........................115 3.20.7 "Trigger“ tab .......................... 116 3.20.8 Threshold value trigger ......................
  • Page 10 Table of contents SINEMA Remote Connect (CP) ......................161 Validity ..........................161 Connection to SINEMA RC ....................161 Telecontrol via SINEMA RC ....................163 Security > VPN > SINEMA Remote Connect ..............164 WBM of the TIM 1531 IRC ........................167 Supported Web browsers ....................

  • Page 11: Functions And Requirements

    Functions and requirements Communications modules Communications modules for the telecontrol protocol DNP3 The following SIMATIC NET communications modules can be used for the telecontrol protocol DNP3. You will find the TIM 4R-IE DNP3 with article number 6NH7803-4BA00-0AA0 twice in the STEP 7 catalog, as built-in unit (S7-300 rack) and as stand-alone device.

  • Page 12: Configuration Examples

    Functions and requirements 1.2 Configuration examples Notes on the table Notes on the columns: ● Station type "Node station" A node station is located in the plant hierarchy between the master station and other lower-level stations. The module requires at least two interfaces. In the configuration, the "network node type"...
  • Page 13 Functions and requirements 1.2 Configuration examples Figure 1-1 Communication via Ethernet / Internet E-mails The modules can generate and send e-mails due to events. The following recipients are possible: ● PCs with an Internet connection ● Cell phones ● SIMATIC stations with the appropriate program blocks Inter-station communication Direct inter-station communication between S7 stations with a TIM is possible via IP-based networks.
  • Page 14 Functions and requirements 1.2 Configuration examples Path redundancy using the serial interface In the following example, the Ethernet interface and the serial interface are used with the TIM 1531 IRC to set up redundant transmission paths. ● Ethernet interface for communication via Ethernet / Internet ●...

  • Page 15: Usable Cpus

    Functions and requirements 1.3 Usable CPUs Usable CPUs Compatible CPUs The following can be configured as assigned CPUs of the communications modules: ● TIM 1531 IRC – S7-1500 All CPUs as of firmware version V2.1 – S7-300 All CPUs with PROFINET interface –...

  • Page 16: Performance Data And Configuration Limits

    Functions and requirements 1.5 Performance data and configuration limits Performance data and configuration limits 1.5.1 TIM 1531 IRC Connection resources ● Telecontrol connections The number of connections or communications partners is limited for the two interface types and every individual interface. Note that redundant connection paths of a connection between two partners require two connection resources on each partner.

  • Page 17: Tim 4R-Ie Dnp3 / Tim 3V-Ie Dnp3

    Functions and requirements 1.5 Performance data and configuration limits You will find details of how the send buffer works (storing and sending events) as well as the options for transferring data in the section Process image, type of transmission, event classes (Page 113).
  • Page 18 Functions and requirements 1.5 Performance data and configuration limits ● TIM 3V-IE DNP3 Number in total: Max. 8, of which: – Via the Ethernet interface: Max. 8 – Via the RS-232 interface: Max. 8 Note Double the connection resources with direct communication between stations (only via Ethernet or dial-up network) Note that when there is direct communication between two stations, 2 connection resources are occupied per station: One for the master station connection, one for the station...

  • Page 19: Cp 1243-8 Irc

    Functions and requirements 1.5 Performance data and configuration limits Size of the message memory for events ● TIM 3V-IE DNP3: 64 000 events ● TIM 4R-IE DNP3: 200 000 events Number of S7 connections via Ethernet In addition to the DNP3 connections, the number of possible S7 connections via the Ethernet interface is as follows: ●...
  • Page 20 Functions and requirements 1.5 Performance data and configuration limits Connection resources ● Telecontrol connections The CP can establish connections to up to 4 communications partners. The partners can be linked redundantly. ● TCP connections The CP can establish connections to up to 4 communications partners (S7 stations). ●...

  • Page 21: Cp 1243-1

    Functions and requirements 1.5 Performance data and configuration limits Firewall rules The maximum number of firewall rules in advanced firewall mode is limited to 256. The firewall rules are divided up as follows: ● Maximum 226 rules with individual addresses ●...

  • Page 22: Cp 1542Sp-1 Irc

    Functions and requirements 1.5 Performance data and configuration limits The send buffer has a maximum size of 64000 events divided into equal parts for all configured communications partners. The size of the frame memory can be set in STEP 7, refer to the section Process image, type of transmission, event classes (Page 113).

  • Page 23: Pg Routing

    Functions and requirements 1.6 PG routing Also: ● Online connections of the engineering station (STEP 7): Max. 2 ● TCP connections for HTTP For HTTP access upp to 12 TCP connection resources are available that are used by one or more Web browsers to display data of the CP. ●...
  • Page 24 Functions and requirements 1.6 PG routing Module TIM 1531 IRC CP 1243-8 IRC CP 1542SP-1 IRC Medium TIM 1531 IRC Ethernet (S7) Ethernet (S7) Ethernet (S7) CP 1243-8 IRC Ethernet (S7) CP 1542SP-1 IRC Ethernet (S7) Max. number of S7 routing connections: 4 Configuration - DNP3 Configuration Manual, 11/2018, C79000-G8976-C508-01...

  • Page 25: Communication Mechanisms

    Communication mechanisms Addressing and network configuration Address information of the station The following station information is required for the configuration: ● Station address (DNP3 address) of the station ● Listener port of the station. The master needs the port number to establish the connection.

  • Page 26: Communications Options

    Communication mechanisms 2.2 Communications options ● DNS server address(es) You require the DNS server address if you address the master using a name that can be resolved by DNS. ● Partner number Stations that communicate with the master require the partner number of the master in order to assign the data points to be transferred.

  • Page 27: Connection Establishment

    Communication mechanisms 2.3 Connection establishment ● Direct communication With direct communication, stations communicate directly with each other without the frames being transmitted from a master station or station. Two stations can thus communicate directly with each other. You define the function when configuring a data point via the "Master function" parameter, see section "General"...

  • Page 28: Acknowledgment

    Communication mechanisms 2.4 Acknowledgment Acknowledgment The receipt of sent frames is monitored and acknowledged differently depending on the communication type and the telecontrol protocol. Acknowledgment in DNP3 The basic acknowledgment mechanisms are configured for the data link layer, see section Transmission settings –...

  • Page 29: Configuration

    ● Keep the firmware up to date. Check regularly for security updates of the firmware and use them. ● Check regularly for new features on the Siemens Internet pages. – You can find information on Industrial Security here: Link: (http://www.siemens.com/industrialsecurity) –...
  • Page 30 Configuration 3.1 Security recommendations Security functions of the product Use the options for security settings in the configuration of the product. These includes among others: ● Protection levels Configure a protection level of the CPU. You will find information on this in the information system of STEP 7. ●...
  • Page 31 Configuration 3.1 Security recommendations ● Default of the port – Open The port is open at the start of the configuration. – Closed The port is closed at the start of the configuration. ● Port status – Open The port is always open and cannot be closed. –...

  • Page 32: Communication Types

    Configuration 3.2 Communication types These can be: ● NTP / 123 (UDP) ● DNS / 53 (UDP) ● DHCP / 67, 68 (UDP) ● SINEMA RC Autoconfiguration / 443 (TCP) - can be set ● SINEMA RC and OpenVPN / 1194 (UDP) - can be set in SINEMA RC Communication types "Communication types"...

  • Page 33: Basic Settings / Options

    Configuration 3.3 Basic settings / Options ● Read IP address via DCP Only configurable with: TIM 3V-IE DNP3 / TIM 4R-IE DNP3 Allows the IP address of the module to be read out via DCP (Discovery and basic Configuration Protocol). Basic settings / Options 3.3.1 Basic settings...
  • Page 34 Configuration 3.3 Basic settings / Options You set the general behavior via the following parameters: ● Activate retentive saving Activates the retentive saving of events on the SD card in the event of connection disruptions. ● Number of events before saving Saving events on the SD card starts when the number of events in the send buffer configured here is reached after a connection failure.

  • Page 35: Options

    Configuration 3.3 Basic settings / Options Note Consistency of the address parameters STEP 7 does not check the consistency between manually configured addresses and the parameters of the module's Ethernet interfaces. Ensure consistency with the address parameters of the respective interface. ●...

  • Page 36: Configuration Of Interfaces, Networks And Network Nodes

    Configuration 3.4 Configuration of interfaces, networks and network nodes Basic data point settings of the TIM Frame receipt ● Check of the source address If the option is activated, the address of the communications partner is checked in receive frames. All data frames that do not originate from configured partners are discarded. If the TIM is to receive and process data frames from several partners, the option must be deactivated.
  • Page 37 Configuration 3.4 Configuration of interfaces, networks and network nodes First, configure the respective module interface. The subsequently connected WAN network adopts the most important settings. ● WAN type Selection of the WAN type of the interface: – IP-based Default setting of the Ethernet interface –...

  • Page 38: Networking Of The Interfaces

    Configuration 3.4 Configuration of interfaces, networks and network nodes – MD720 The GSM modem MD720 is not supported because it uses frame format FT2. – Third-party modem Any compatible modem for the network types "Dedicated line" or "Dialup network" (analog / ISDN / GSM) 3.4.2 Networking of the interfaces Module interfaces...
  • Page 39 Configuration 3.4 Configuration of interfaces, networks and network nodes Networking WAN interfaces Recommendation networking: To network the interfaces with a WAN network, the following procedure is recommended: 1. Network the WAN networks in the network view of STEP 7. In the graphic network view, you have an overview of the subnets of the entire system in the project.

  • Page 40: Ethernet Interface

    Configuration 3.5 Ethernet interface Figure 3-3 Network with master station (top), node station (center) and station (bottom) Ethernet interface 3.5.1 Ethernet interface > address parameters Ethernet interface > Ethernet addresses > IP protocol ... In the following parameter groups configure the IP address parameters of the Ethernet interface.

  • Page 41: Advanced Options

    Configuration 3.5 Ethernet interface 3.5.2 Advanced options 3.5.2.1 TCP connection monitoring Ethernet interface > Advanced options > TCP connection monitoring The settings of the two parameters at the Ethernet interface govern TCP connections via this interface. You can adapt the parameters in the properties of the telecontrol connections for each connection segment.

  • Page 42: Transmission Settings

    Configuration 3.5 Ethernet interface 3.5.2.2 Transmission settings You will find the specific parameters of the telecontrol protocol in the section DNP3 parameters of the interfaces (Page 53). 3.5.3 Web server access 3.5.3.1 Access to the Web server of the CPU The Web server is located in the CPU.

  • Page 43: Serial Interface

    Configuration 3.6 Serial interface Serial interface 3.6.1 Advanced options 3.6.1.1 Dedicated line Settings dedicated line Settings serial interface ● Interface standard Standard of the serial interface: RS232 / RS485 Select the following value: – RS232 When a modem with an RS-232 interface is connected to the interface of the TIM –...
  • Page 44 Configuration 3.6 Serial interface Only for interfaces with the Network node type "Station" / "Node station". ● Max. number of spontaneous frames The parameter decides after how many frames the master station has the opportunity of transferring its pending frames to the station. As maximum, the configured number of spontaneous frames that are pending at the time of the first call frame are transferred.
  • Page 45 Configuration 3.6 Serial interface ● Send delay time (after CTS) The delay time (ms) is used when readiness to send (CTS signal) is received from the modem and when 0 (null) has been configured for the "RTS/CTS delay time". – Value = 0 Transmission is not delayed until the CTS signal of the modem.
  • Page 46 Configuration 3.6 Serial interface ● Max. allowed disruption time Only configurable with: TIM 3V-IE DNP3 / TIM 4R-IE DNP3 Tolerance time for a detected connection problem with the CPU. If there is still a disruption on the connection when the set time has elapsed, the disruption is signaled to all connection partners of the disrupted station.

  • Page 47: Dialup Network

    Configuration 3.6 Serial interface 3.6.1.2 Dialup network Settings dialup network Only the configurable parameters are explained. Settings serial interface ● Interface standard Standard of the serial interface: RS232 / RS485 - can be switched over Select one of the following values: –...
  • Page 48 Configuration 3.6 Serial interface Call parameters ● Data format dial phase Only configurable with: CP 1243-8 IRC / TIM 3V-IE DNP3 / TIM 4R-IE DNP3 Defines the frame format. Select the appropriate combination of number of data bits, parity and stop bits. TIM 1531 IRC uses the format FT3.
  • Page 49 Configuration 3.6 Serial interface Transmission setting for conditionally spontaneous messages ● Transmission criterion Only configurable with: CP 1243-8 IRC / TIM 3V-IE DNP3 / TIM 4R-IE DNP3 With TIM 1531 IRC, the settings are transferred by the partner; if the send buffer overflows, the "Degree of filling"...
  • Page 50 Configuration 3.6 Serial interface ● Dial test interval The test interval (min) is started when no connection could be established by the communications module after 3 attempts. When the test interval elapses, the communications module attempts to establish a connection again. If it fails to establish the connection again, the test interval is restarted.

  • Page 51: Transmission Settings

    Configuration 3.7 Configuring WAN networks (see above) is lost. This mode is primarily intended for control systems that archive events strictly chronologically. Mobile wireless settings Communication using mobile wireless networks is not supported. 3.6.1.3 Transmission settings You will find the specific parameters of the telecontrol protocol in the section DNP3 parameters of the interfaces (Page 53).
  • Page 52 Configuration 3.7 Configuring WAN networks Access method Only with dedicated line ● Access method The access method is preset and cannot be changed: – Polling Frame parameters The parameters are preset and cannot be changed. ● Frame format – FT3 ●...

  • Page 53: Dnp3 Parameters Of The Interfaces

    Configuration 3.8 DNP3 parameters of the interfaces For information on the time-of-day concept, see section Time-of-day synchronization (Page 67). Station list This is where you can find an overview table of the stations connected to the network with their most important parameters. The WAN address is the station address.
  • Page 54 Configuration 3.8 DNP3 parameters of the interfaces – Station: In the station, the parameter is used to calculate the waiting times during connection establishment. With redundant paths, the following applies: If the acknowledgment is not received, the transmission path is classified as disrupted. Range of values: 0 ...

  • Page 55: Settings Dnp3 Master

    Configuration 3.8 DNP3 parameters of the interfaces ● Confirmation timeout Time period (seconds) in which a confirmation (acknowledgment) is expected from the partner on the data link layer. If no acknowledgment is received within the configured time period, data transmission is repeated, see the "Frame repetition" parameter above. Range of values: 0...65535 Default setting: 2 The default value of 2 seconds usually only needs to be increased for slow serial...

  • Page 56: Settings Dnp3 Station

    Configuration 3.8 DNP3 parameters of the interfaces 3.8.3 Settings DNP3 station DNP3 parameters of the station / node station You can find the following parameters in the "Settings DNP3 station" parameter group of the interfaces of the communication module set on the "Station" or "Node station" network node type.
  • Page 57 Configuration 3.8 DNP3 parameters of the interfaces ● Buffer for class 1 / 2 / 3 events For each of the three event classes, this is where you specify the number of events after which the stored events are sent to the communication partner. Note that the maximum size of the send buffer is divided over all connected DNP3 master stations.
  • Page 58 Configuration 3.8 DNP3 parameters of the interfaces Unsolicited sending ● Unsolicited reporting: Transfer mode for events – Yes Event frames are transferred immediately. With this option, the station independently establishes a connection with the master. If unsolicited transmission in the master is disabled, the master sends the "DISABLE_UNSOLICITED"...

  • Page 59: Web Server

    Configuration 3.9 Web server Web server The Web server of the TIM The TIM provides you with the functionality of a Web server for access using a Web browser. The following functions are available via the Web server: ● Read access –...
  • Page 60 Configuration 3.9 Web server "Web server" parameter group General ● Enable Web server on this module Enables data processing in the Web server of the TIM and allows access to this data. ● Allow access only using HTTPS Allows access to the Web server only with the secure protocol HTTPS. Note "Allow access only using HTTPS"...

  • Page 61: Web Diagnostics

    Configuration 3.10 Web diagnostics 3.10 Web diagnostics 3.10.1 Web diagnostics of the TIM 1531 IRC Requirements ● The Web server of the module is enabled in the configuration, "Web server" parameter group, and the interface is selected. ● The interface is enabled for access to the Web server in the configuration, "Ethernet interface >...

  • Page 62: Communication With The Cpu

    Configuration 3.12 Communication with the CPU 3.12 Communication with the CPU Communication with the CPU Using the first three parameters you specify the CPU access by the TIM in the CPU scan cycle. You will find the structure of the CPU scan cycle in the section Read cycle (Page 115). The fourth parameter "Frame memory size"...
  • Page 63 Configuration 3.12 Communication with the CPU CP diagnostics With the parameter group, you have the option of reading out advanced diagnostics data from the CP using PLC tags. ● Enable advanced CP diagnostics Enable the option to be able to use advanced CP diagnostics. If the option is enabled, at least the "Diagnostics trigger tag"...
  • Page 64 Configuration 3.12 Communication with the CPU PLC tags for partner status / path status Via the PLC tag that can be configured here, you can monitor the following information about the reachability of the communications partners: ● Partner status Reachability of the remote communications partner ●...
  • Page 65 Configuration 3.12 Communication with the CPU Byte 1 "Path status" Byte 1 shows the status of the connection path (configured connection) to the partner from the point of view of the local TIM. A maximum of 2 paths (main and substitute path) to a partner can be configured, see section Communications options (Page 26).
  • Page 66 Configuration 3.12 Communication with the CPU ● Path status – Main path = 1. Path (bits 0 + 1) – Substitute path = 2nd path (bits 2 + 3) Status of bit Status of bit Meaning bit 1 Meaning bit 0 1 (3) 0 (2) Bit 1: Path not current...

  • Page 67: Time-Of-Day Synchronization

    Configuration 3.13 Time-of-day synchronization 3.13 Time-of-day synchronization Time-of-day synchronization and security If you enable the security functions in modules with security, you will find the parameter group under "Security". When security functions are enabled, you need to regularly synchronize the time of day of the communications module.
  • Page 68 Configuration 3.13 Time-of-day synchronization Synchronization methods of the communications modules The modules support the following methods and functions (receiving/forwarding) of time-of- day synchronization: ● TIM 1531 IRC – No time source – From NTP server – From WAN – To local station –...
  • Page 69 Configuration 3.13 Time-of-day synchronization Methods for receiving the time of day ● NTP / NTP (secure) Network Time Protocol Time-of-day synchronization only via Ethernet The secure method NTP (secure) uses authentication with symmetrical keys. Various configurable hash algorithms are available for the integrity check. In the global security settings, you can create and manage NTP servers of the type NTP (secure).
  • Page 70 Configuration 3.13 Time-of-day synchronization Forwarding time of day by the TIM The TIM can forward its time of day as follows: ● To connected networks Configuration with "Time of day synchronization" > "Send time" or "Receive time" The procedure for configuration differs in Ethernet and classic WAN networks, see below. ●...
  • Page 71 Configuration 3.13 Time-of-day synchronization ● Classic WAN network For classic networks the "Time-of-day synchronization" is enabled in the parameter group of the same name. You also specify the synchronization cycle. The settings for synchronization are then adopted by all connected TIM modules. The send direction of the time-of-day frames is derived automatically from the node type of the connected interfaces: Master station ⇒...

  • Page 72: E-Mail Configuration

    Configuration 3.14 E-mail configuration Configuring the synchronization via classic WAN networks TIM modules (time master and slaves) 1. In the parameter group "Receive time" of the TIM to be time master configure the time source with one of the following options: –...

  • Page 73: Subscriber Numbers

    Configuration 3.15 Subscriber numbers If your e-mail service provider only supports encrypted transfer, use one of the following options: ● Port no. 587 By using STARTTLS, the module sends encrypted e-mails to the SMTP server of your e- mail service provider. Recommendation: If your e-mail provider offers both options (STARTTLS / SSL/TLS), you should use STARTTLS with port 587.

  • Page 74: Snmp

    Configuration 3.16 SNMP 3.16 SNMP SNMP The scope of performance of the modules is given in the relevant manual. If the security functions are enabled, you have the following selection and setting options, depending on the module. SNMP ● "Enable SNMP" If the option is enabled, communication via SNMP is released on the device.

  • Page 75: Security (Cp) And Certificates

    Configuration 3.17 Security (CP) and certificates SNMPv3 The algorithms need to be configured for encrypted access to the device via SNMPv3. ● "Authentication algorithm" Select the authentication method to be used from the drop-down list. ● "Encryption algorithm" Select the encryption method to be used from the drop-down list. User management In the user management that you will find in the global security settings, assign the various users their role.

  • Page 76: Log Settings - Filtering Of The System Events

    Configuration 3.17 Security (CP) and certificates 3.17.3 Log settings - Filtering of the system events Communications problems if the value for system events is set too high If the value for filtering the system events is set too high, you may not be able to achieve the maximum performance for the communication.

  • Page 77: Creating A Vpn Tunnel For S7 Communication Between Stations

    Configuration 3.17 Security (CP) and certificates Areas of application ● Local area networks can be connected together securely via the Internet ("site-to-site" connection). ● Secure access to a company network ("end-to-site" connection) ● Secure access to a server ("end-to-end" connection) ●...
  • Page 78 Configuration 3.17 Security (CP) and certificates Note Communication also possible via an IP router Communication between the two stations is also possible via an IP router. To use this communications path, however, you need to make further settings. Procedure To create a VPN tunnel, you need to work through the following steps: 1.

  • Page 79: Vpn Communication With Softnet Security Client (Engineering Station)

    Configuration 3.17 Security (CP) and certificates Note Current date and current time on the CP for VPN connections Normally, to establish a VPN connection and the associated recognition of the certificates to be exchanged, the current date and the current time are required on both stations. The establishment of a VPN connection to an engineering station that is also the telecontrol server at the same time (TCSB installed), runs as follows along with the time of day synchronization of the CP:...

  • Page 80: Establishment Of Vpn Tunnel Communication Between The Cp And Scalance M

    Configuration 3.17 Security (CP) and certificates VPN tunnel communication works only if the internal node is disabled Under certain circumstances the establishment of VPN tunnel communication between SOFTNET Security Client and the CP fails. SOFTNET Security Client also attempts to establish VPN tunnel communication to a lower- level internal node.

  • Page 81: Certificate Manager

    If you use communication with authentication for the module, for example SSL/TLS for secure transfer of e-mails, certificates are required. You need to import certificates of non- Siemens communications partners into the STEP 7 project and download them to the module with the configuration data: 1.
  • Page 82 Configuration 3.17 Security (CP) and certificates If the module communicates with non-Siemens partners when the security functions are enabled, the relevant certificates of the communications partners must be exchanged. To do this, follow the steps below: 1. Importing third-party certificates from communications partners ⇒...

  • Page 83: Protection (Tim 1531 Irc)

    Configuration 3.18 Protection (TIM 1531 IRC) You export the certificate of the module for communications partners from third-party vendors in much the same way as when importing (see above). Follow the steps outlined below: 1. In the STEP 7 project open the global certificate manager: Global security settings >...
  • Page 84 Configuration 3.18 Protection (TIM 1531 IRC) The table of access levels You configure the access levels in the table. The green check mark in the columns on the right of the particular access level indicate the maximum possible operations without knowing the password for this access level.

  • Page 85: Configuring Access Protection

    Configuration 3.18 Protection (TIM 1531 IRC) 3.18.2 Configuring access protection Configuration You can enter several passwords setting up different access rights for different user groups. The passwords are entered in the table so that precisely one access level is assigned to each password.

  • Page 86: Telecontrol Connections

    Configuration 3.19 Telecontrol connections 5. As necessary, assign other passwords to the required access levels if the selected access level permits this. 6. Download the hardware configuration so that the access level takes effect. Result The hardware configuration and the blocks are protected from unauthorized online access according to the set access level.

  • Page 87: Network Data" Editor

    Configuration 3.19 Telecontrol connections 3.19.2 "Network data" editor Opening the editor "Network data" > "TeleControl" tab To open the editor, follow the steps below: 1. Open the network view of the project. On the right you will find the collapsed "Network data" editor. 2.
  • Page 88 Configuration 3.19 Telecontrol connections In the "Telecontrol connections" table, you can display or hide the columns, arrange them and optimize the column width. Right-click on a column header to access the shortcut menu. ● Arrange columns If you click on a column header and hold down the left mouse button, you can move the column within the table.

  • Page 89: Specifying Connection Paths

    Configuration 3.19 Telecontrol connections Delete invalid or redundant connections If there are unauthorized or unwanted redundant connections, you must delete a connection path: 1. In the "Configured connection paths" table, select the unwanted connection path. 2. Click "Delete" in the shortcut menu. 3.19.3 Specifying connection paths Rules for connection configuration...
  • Page 90 Configuration 3.19 Telecontrol connections ● Two connections to a partner via the same interface of a module are not allowed. ● A connection via an inconsistent network is invalid. Example of inconsistent networks: – A subscriber of a connection segment is connected to another telecontrol protocol. –...
  • Page 91 Configuration 3.19 Telecontrol connections 3. Click the "Endpoint" field in the same row. Select the endpoint (CPU) from the table with a double-click. – Special case: "Third-party device": If you want to create a third-party device as endpoint instead of an endpoint from a STEP 7 project, leave the default entry "Third-party device"...

  • Page 92: Connection Table

    Configuration 3.19 Telecontrol connections The "Connection path" table supports you in checking the connection paths. For every configured connection, the detailed connection path is shown here. A station symbol with an identifier for the connection point is displayed in the "Position" column.
  • Page 93 Configuration 3.19 Telecontrol connections Figure 3-6 Connection table The filter "1" is set in the "Starting point" column. Example: You have created connections with the starting points "1200", "1" and "2". When "1" is entered in the filter cell, only the segments whose starting points start with this partial string are shown: "1"...
  • Page 94 Configuration 3.19 Telecontrol connections ● Endpoint Select the endpoint of the connection. Endpoints of a connection can be: – A CPU – A third-party device The network node type of third-party devices is configured in the parameter group of the connection, see section Third-party device parameters (Page 102). ●...
  • Page 95 Configuration 3.19 Telecontrol connections ● Partner monitoring "Partner monitoring time" Relevant for all subscriber types If the station module does not receive a sign of life from the master on the application layer within the configured time, it classifies the connection as disrupted and terminates it. After sending data, the master module expects a response from the station within the configured time.
  • Page 96 Configuration 3.19 Telecontrol connections ● Class 0 polling Relevant for master, third-party device (master) The class 0 polling interval determines the cycle in which class 0 data from the image memory of the station is polled by general requests from the DNP3 master station. The interval is specified as a multiple of the parameter "Polling basic interval"...

  • Page 97: Parameters Of The Dnp3 Connections

    Configuration 3.19 Telecontrol connections ● Conformity level Relevant for all subscriber types Specifies the DNP3 conformity level (DNP3 implementation level) supported by the partner: Level 1, 2, 3, 4 and Level 4+ The conformity level referred to as Level 4+ contains the functional scope of Level 4 and also the support of additional data types / variations;...

  • Page 98: Tcp Connection Monitoring

    Configuration 3.19 Telecontrol connections General ● Connection Shows the name of the connection and the protocol. You can also change the connection name here. ● Connection points Shows the most important parameters of the connection. You can also change the station address of a third-party device here. 3.19.5.2 TCP connection monitoring Ethernet interface >...

  • Page 99: Dnp3 Security Options

    Configuration 3.19 Telecontrol connections – CP 1243-1 / CP 1243-8 IRC 0...65535 s – TIM 3V-IE DNP3 / TIM 4R-IE DNP3 1...255 s – CP 1542SP-1 IRC 0...32767 s If you have configured a redundant connection to a partner, the parameters can be set separately for both connection paths.
  • Page 100 Configuration 3.19 Telecontrol connections ● Security statistics Specifies whether the statistics of security events are sent to the master. Security events are authentication requests of the master to the station module. If this option is activated, all authentication requests are stored in the station module with date, time and result and sent to the master for further evaluation.
  • Page 101 Configuration 3.19 Telecontrol connections ● Max. number of statistics queries If the configured number of statistics requests of the master is exceeded within the key exchange interval, the module enters a message in the diagnostics buffer of the CPU. Range of values: 2...255 Default setting: 5 ●...

  • Page 102: Transmission Settings - Dnp3

    Configuration 3.19 Telecontrol connections 3.19.5.4 Transmission settings – DNP3 Transmission settings DNP3 ● Form of transfer Defines the form of transfer of event frames. – Type-specific This is the bundled transfer of events according to data types typical for DNP3. First the existing binary events are sent, then all analog values and finally all counted value changes.

  • Page 103: Configuring Data Points

    Configuration 3.20 Configuring data points 3.20 Configuring data points 3.20.1 Data point configuration Data point-related communication with the CPU No program blocks need to be programmed for telecontrol modules with data point configuration to transfer user data between the station and communications partner. The data areas in the memory of the CPU intended for communication with the communications partner are configured data point-related on the module.
  • Page 104 Configuration 3.20 Configuring data points Configuring the data points and messages in STEP 7 You configure the data points in STEP 7 in the data point and message editor. You can open both editors alternatively as follows: ● Selecting the communications module Shortcut menu "Open the data point and messages editor"...
  • Page 105 Configuration 3.20 Configuring data points A preset name is written in the cell. You can change the name to suit your purposes but it must be unique within the module. Figure 3-9 Data point table You configure the remaining properties of every object using the drop-down lists of the other table columns and using the parameter boxes shown at the bottom of the screen.
  • Page 106 Configuration 3.20 Configuring data points ● Sorting objects If you click briefly with the left mouse button on a column header, you can sort the objects of the table in ascending or descending order according to the entries in this column. The sorting is indicated by an arrow in the column header.
  • Page 107 Configuration 3.20 Configuring data points Exporting and importing data points To simplify the engineering of larger plants, you can export the data points of a configured module and import them into other modules in the project. This is an advantage particularly in projects with many identical or similar stations or data point modules.
  • Page 108 Configuration 3.20 Configuring data points individual parameters to the particular station. This saves you having to configure the data points for every module in STEP 7. Instead, you simply import the copied and adapted CSV file to the other modules of the same type. When you import this file into another module, the changed parameter values of the CSV file are adopted in the data point configuration of this module.

  • Page 109: Datapoint Types

    Configuration 3.20 Configuring data points Importing into several modules You can import the data points from several modules into the modules of a different project. To do this in the import dialog select all the required CSV files with the control key. Before importing the data points, make sure that the respective stations have been created with CPUs of the same name, modules of the same name and PLC tags of the same name.
  • Page 110 Configuration 3.20 Configuring data points The table lists the supported data point types of the modules with the classifications of the protocol and the compatible S7 data types of the CPU. Note Effect of the change of arrays for data points If an array is modified later, the data point must be recreated.
  • Page 111 Configuration 3.20 Configuring data points Format (memory Data point type DNP3 object Direction S7 data types Operand area requirements) group [variation] Floating-point num- Analog Input 30 [5] Real Q, M, DB ber (32 bits) Analog Input Event 32 [5, 7] Real Q, M, DB Analog Output Sta-...

  • Page 112: General" Tab

    Configuration 3.20 Configuring data points With the data point types Binary Output Event (11) and Analog Output Event (42), you also need to enable mirroring; refer to the next paragraph. Configuration of mirroring for output events (object groups 11 and 42) You first create the data point types Binary Output Event (object group 11) and Analog Output Event (object group 42) as described above as data points of the object groups 12 or The local values of these two object groups can be monitored for changes and the changes...

  • Page 113: Rules For Configuring The Data Point Index

    Configuration 3.20 Configuring data points ● Value monitoring Only for commands and outputs of a station module When this option is activated, the current value of the data point, which can be set by the master, is mirrored back from the station to the master. Furthermore, the trigger options of the data point can be enabled to configure the triggering of the transmission.
  • Page 114 Configuration 3.20 Configuring data points The image memory, the process image of the module The image memory is the process image of the TIM. All the current values of the configured data points are stored in the image memory. New values of a data point overwrite the last stored value in the image memory.

  • Page 115: Read Cycle

    Configuration 3.20 Configuring data points Types of transmission and event classes The following types of transmission are possible: ● Transfer after call (class 0) The current value of the data point is entered in the image memory. New values of a data point overwrite the last stored value in the image memory.

  • Page 116: Trigger" Tab

    Configuration 3.20 Configuring data points ● Write jobs In every cycle, the values of a certain number of unsolicited write jobs are written to the CPU. The number of tags written per cycle is specified for the transferring module in the "Communication with the CPU"...

  • Page 117: Threshold Value Trigger

    Configuration 3.20 Configuring data points ● Event trigger (Trigger tag) The value of the data point is saved when a configurable trigger signal is fired. For the trigger signal, the edge change (0 → 1) of a trigger tag is evaluated that is set by the user program.
  • Page 118 Configuration 3.20 Configuring data points Threshold value trigger Function If the process value deviates by the amount of the threshold value, the process value is saved. Two methods are used to calculate the threshold value deviation: ● Absolute method With binary and counter values as well as with analog values with configured mean value generation, the absolute method is used to calculate the threshold value deviation.

  • Page 119: Analog Value Preprocessing

    Configuration 3.20 Configuring data points Table 3- 5 Example of the integration calculation of a threshold value configured with 2.0 Time [s] Process value Current process Absolute deviation Integrated devia- stored in the value from the stored tion (calculation cycle) send buffer value 20.0...
  • Page 120 Configuration 3.20 Configuring data points Sequence of the analog value preprocessing options The values of analog inputs configured as an event are processed on the TIM according to the following scheme: Figure 3-11 Sequence of the analog value preprocessing Configuration - DNP3 Configuration Manual, 11/2018, C79000-G8976-C508-01...
  • Page 121 Configuration 3.20 Configuring data points The 500 millisecond cycle is started by the integrative threshold value calculation. In this cycle, the values are saved even when the following preprocessing options are enabled: ● Unipolar transfer ● Fault suppression time ● Limit value calculation ●...
  • Page 122 Configuration 3.20 Configuring data points The calculation of a new mean value is then started. If the analog value remains in the overflow or underflow range, one of the two values named is again saved as an invalid mean value and sent when the next message is triggered. Note Fault suppression time >...
  • Page 123 Configuration 3.20 Configuring data points Input modules The suppression is adjusted to analog values that are acquired directly by the S7 analog input modules as raw values. These modules return the specified values for the overflow or underflow range for all input ranges (also for live zero inputs). An analog value in the overflow range (32767 / 7FFF ) or underflow range (-32768 / 8000 is not transferred for the duration of the fault suppression time.
  • Page 124 Configuration 3.20 Configuring data points Set limit value 'low' / Set limit value 'high' Requirements for the function ● Configuration of the threshold trigger for this data point ● PLC tag in the bit memory operand area or data area The analog value data point must be linked to a PLC tag in the memory or data area (data block).

  • Page 125: Command Output

    Configuration 3.20 Configuring data points * The value ranges (underflow / overflow) in PLC variables with different data types are as follows: ● Int – -32768 – 32767 ● DInt – -2147483648 – 2147483647 ● Real – -3.4000E+038 – 3.4000E+038 ●...
  • Page 126 Configuration 3.20 Configuring data points The following output options can be used for command data points: ● LATCH_ON/OFF The function is encoded by the master via the Control Code of the object. – Control Code, Operation Type field (OP Type) - Volume 6, Part 2, Objects The master permanently latches a command output to the value 0 or 1.
  • Page 127 Configuration 3.20 Configuring data points Table 3- 6 Decoding of the control code by the command data point of the station Received control code Reaction of the station data point Control Trip- Operation Option enabled: Option enabled: Code Close Type Field PULSE_ON LATCH_ON / OFF Code...
  • Page 128 Configuration 3.20 Configuring data points No specific parameters are available for the output option LATCH_ON/OFF. The station module evaluates the control codes of the master station according to the table above. PULSE_ON parameters Master Name: Number of pulses Range of val- 1 ...
  • Page 129 Configuration 3.20 Configuring data points Explanation: Monitors the number of pulses sent by the master (Count). If the number of pulses received from the master exceeds the value configured here, the command is discarded. If you enter 0 (zero), the monitoring is disabled. Name: Max.

  • Page 130: Partner Stations

    Configuration 3.21 Configuring messages • Select and operate Procedure: – The command is triggered in the master module The "select" frame is sent from the master station to the communication module of the station. – The station acknowledges receipt. – The master data point sends the execution frame after receiving the acknowledgment from the station.
  • Page 131 Configuration 3.21 Configuring messages Triggering sending of messages The sending of the message is triggered by an event that is configured in the "Trigger" tab (see below). Requirements and necessary information Consider the following requirements in the configuration for the transfer of e-mails: ●...

  • Page 132: Character Set For Messages

    Configuration 3.21 Configuring messages ● Enable identifier for processing status If the option is enabled, every attempt to send returns a status with information about the processing status of the sent message. The status is written to the "PLC tag for processing status". If there are problems delivering messages, you can determine the status via the Web server (diagnostics status) or read it out from the PLC tag.

  • Page 133: Diagnostics

    Diagnostics Diagnostics options The following diagnostic options are available with most modules. Some functions are limited to specific data types or protocols. LEDs of the module You can find information on the LED displays in the manual for the respective module. STEP 7: The "Diagnostics"...
  • Page 134 Diagnostics 4.1 Diagnostics options ● Industrial Remote Communication Here, you obtain WAN-specific information on the TIM module: – Partner Here you will find address and configuration data of the partners, connection statistics and additional diagnostics information. Click on a subscriber to display additional information.

  • Page 135: Online Security Diagnostics Via Port 8448 (Cp)

    Diagnostics 4.2 Online security diagnostics via port 8448 (CP) Partner status and connection status in the WBM You will see the configured partners and the status of the connections to the local and remote communications partners of the TIM on the page "Telecontrol" > "Partner information"...

  • Page 136: Snmp

    ● SNMPv1 (standard) ● SNMPv3 (Security) They return the contents of MIB objects of the standard MIB II according to RFC1213 and the Siemens Automation MIB. ● MIB II The MIB supports the following groups of MIB objects: – System –...

  • Page 137: Sinaut Special Diagnostics

    The following groups of the MIB II standard are not supported: – Adress Translation (AT) – EGP – Transmission ● Siemens Automation MIB Write access is permitted only for the following MIB objects of the system group: – sysContact – sysLocation –...

  • Page 138: Tim Diagnostics

    Diagnostics 4.5 SINAUT special diagnostics 4.5.2 TIM diagnostics 4.5.2.1 TIM Diagnostics - functions Description of the functions TIM Diagnostics provides various diagnostic data of a TIM module. This is displayed in the following tabs: ● "Memory" tab: Information on memory and disk configuration ●...

  • Page 139: Tim Diagnostics - Memory Tab

    Diagnostics 4.5 SINAUT special diagnostics 4.5.2.2 TIM Diagnostics - Memory tab Memory tab The Memory tab displays current diagnostic data of the memory configuration on the TIM: ● In the Memory configuration box: – Static flash EPROM – Dynamic flash EPROM –...
  • Page 140 Diagnostics 4.5 SINAUT special diagnostics the byte size of a memory block. The parameter assignment is performed in the network configuration in NetPro in the Properties dialog, Options tab, Global frame memory field. ● Free (blocks): Free area of the frame buffer. The value indicates the number of free memory blocks. ●...

  • Page 141: Tim Diagnostics - Communication Tab

    Diagnostics 4.5 SINAUT special diagnostics To avoid overflow of the frame memory, all data frames are treated as image frames; in other words, even send buffer frames are treated as image frames and overwritten. ● Data brake: The sending of frames to the remote partner is currently disabled, either because the remote partner is unavailable or there is a lack of memory on the remote partner.

  • Page 142: Tim Diagnostics - Filesystem Tab

    Diagnostics 4.5 SINAUT special diagnostics 4.5.2.7 TIM Diagnostics - Filesystem tab File system tab The File system tab displays all the system data blocks and files of the individual firmware components installed on the flash file system. If a RAM disk is configured on the TIM, this will also be displayed with the files located there. 4.5.2.8 TIM diagnostics - IP Parameters tab IP parameters tab...

  • Page 143: Tim Diagnostics - Msc Communication Tab

    Diagnostics 4.5 SINAUT special diagnostics 4.5.2.10 TIM diagnostics - MSC Communication tab MSC communication tab This tab exists only for a TIM 4R-IE as MSC master station. Figure 4-1 SINAUT diagnostics dialog, MSC communication tab Configuration - DNP3 Configuration Manual, 11/2018, C79000-G8976-C508-01...
  • Page 144 Diagnostics 4.5 SINAUT special diagnostics The "Transmission Information" list shows all MSC stations along with the following detailed information stored on the MSC master station when the dialog is opened. ● Globe icon The globe icon in this dialog has a the following meaning depending on its color (from the perspective of the master station): –...

  • Page 145: Tim Subscriber Diagnostics

    Diagnostics 4.5 SINAUT special diagnostics 0 = error-free signal 99 = loss of synchronization ● Local area code Location of area in the mobile wireless network ● Cell ID Identification number of the active GSM cell ● Data sent [bytes] / Data received [bytes] Volumes of data in bytes at the following times: –...
  • Page 146 Diagnostics 4.5 SINAUT special diagnostics right. The known subscribers are listed with their subscriber number and subscriber type, if accessed over a STEP 7 project the name and station is also displayed. ● Status tab: Information on the reachability of the partners, connections or connection disruptions and information on data communication and the operation of the send buffer ●...

  • Page 147: Tim Subscriber Diagnostics - Status Tab

    Diagnostics 4.5 SINAUT special diagnostics 4.5.3.2 TIM Subscriber Diagnostics - Status tab Status tab The Status tab displays the following information on the subscriber selected on the left in the list of known subscribers from the perspective of the connected TIM module: ●...

  • Page 148: Tim Subscriber Diagnostics - Partner Tab

    Diagnostics 4.5 SINAUT special diagnostics 4.5.3.3 TIM Subscriber Diagnostics - Partner tab Partner tab The Partner tab displays the following known partners with their subscriber number, name and station in the List of communication partners box: ● With CPU modules: Display of the communication partners of the CPU selected in the list on the left of the dialog ●...

  • Page 149: Tim Subscriber Diagnostics - Dialing Extern Tab

    Diagnostics 4.5 SINAUT special diagnostics 4.5.3.4 TIM Subscriber Diagnostics - Dialing extern tab Dialing list external tab If a TIM with a central function is selected before opening the dialog, then special services and the telephone number list (dial command) of the dial-up network driver of the connected TIM modules are displayed in the Dialing list external tab.

  • Page 150: Tim Subscriber Diagnostics - Polling Intern

    Diagnostics 4.5 SINAUT special diagnostics 4.5.3.5 TIM Subscriber Diagnostics - Polling intern Polling list internal tab If a TIM with master function is selected before opening the dialog, the Polling list internal tab displays the data of the station for the known subscribers connected to the connected TIM over a dedicated line.

  • Page 151: Td7Ontim Diagnostics

    Diagnostics 4.5 SINAUT special diagnostics 4.5.4 TD7onTIM diagnostics 4.5.4.1 TD7onTIM Diagnostics - functions Description of the functions Note The TD7onTIM diagnostics function is available only for TD7onTIM-capable TIM modules on which parameters were set for the TD7onTIM software (for example TIM 3V-IE). TD7onTIM diagnostics provides information on the status of the data transmission of the TD7onTIM software package of the TIM module selected in the SINAUT subscriber list.
  • Page 152 Diagnostics 4.5 SINAUT special diagnostics The dialog displays the following information for the station of the selected TIM module: ● The path of the TIM in the project ● The subscriber no. of the TIM ● The subscriber no. of the CPU The lower part of the dialog displays the SINAUT objects and channels with their parameters: ●...

  • Page 153: Processing Status Of The Messages (E-Mail)

    Diagnostics 4.6 Processing status of the messages (e-mail) Figure 4-7 TD7onTIM diagnostics dialog with channel parameters based on the example of the Send analog value channel Processing status of the messages (e-mail) Processing status of messages If this option is enabled in the "Trigger" tab of the message configuration of STEP 7, a status is output on the CP that provides information about the processing status of the sent message.
  • Page 154 Diagnostics 4.6 Processing status of the messages (e-mail) Processing status of the telecontrol e-mails The meaning of the statuses is as follows: Table 4- 2 SMS: Meaning of the status ID output in hexadecimal format Status Meaning 0000 Transfer completed free of errors 0001 Error in the transfer, possible causes: SIM card invalid...

  • Page 155: Maintenance

    Diagnostics 4.7 Maintenance Status Meaning 84xx Other error message from the e-mail server Apart from the leading "8", the message corresponds to the three-digit error number of the SMTP protocol. 8500 Syntax error: Command unknown. This also includes the error of having a command chain that is too long. The cause may be that the e-mail server does not support the LOGIN authentication method.
  • Page 156 Diagnostics 4.7 Maintenance Configuration - DNP3 Configuration Manual, 11/2018, C79000-G8976-C508-01...

  • Page 157: Ouc Program Blocks (Cp)

    OUC program blocks (CP) Validity The functions described below are supported by the following modules: ● CP 1243-1 ● CP 1243-8 IRC ● CP 1542SP-1 IRC Program blocks for OUC Using the program blocks for Open User Communication (OUC) You can use the instructions (program blocks) listed below for direct communication between S7 stations.
  • Page 158 OUC program blocks (CP) A.2 Program blocks for OUC ● TMAIL_C V4.0 Sending e-mails To transfer encrypted e-mails with this block, the precise time of day is required on the module. Configure the time-of-day synchronization. To change the configuration data of the module during runtime: ●...

  • Page 159: Changing The Ip Address During Runtime

    OUC program blocks (CP) A.3 Changing the IP address during runtime ● TMail_V4_SEC For secure transfer of e-mails addressing the e-mail server using an IPv4 address ● TMail_V6_SEC For secure transfer of e-mails addressing the e-mail server using an IPv6 address ●...
  • Page 160 OUC program blocks (CP) A.3 Changing the IP address during runtime Note Changing the IP parameters with a dynamic IP address Note the effects of program-controlled changes to the IP parameters if the CP obtains a dynamic IP address from the Internet service provider: In this case, the CP can no longer be reached by communications partners.

  • Page 161: Sinema Remote Connect (Cp)

    SINEMA Remote Connect (CP) Validity The functions described below are supported by the following modules: ● CP 1243-1 ● CP 1243-8 IRC ● CP 1542SP-1 IRC Connection to SINEMA RC Requirement Required firmware and software versions: ● CP 1243-1 – As of firmware ≥ V3.1 ●...
  • Page 162 SINEMA Remote Connect (CP) B.2 Connection to SINEMA RC Parameter groups You configure communication via SINEMA RC and telecontrol communication via SINEMA RC in two parameter groups: ● Communication via SINEMA RC: > "Security > VPN" ● Telecontrol communication via SINEMA RC: >...

  • Page 163: Telecontrol Via Sinema Rc

    SINEMA Remote Connect (CP) B.3 Telecontrol via SINEMA RC Telecontrol via SINEMA RC For information on possible applications of communication via SINEMA Remote Connect, see section Connection to SINEMA RC (Page 161). Requirements Configure the SINEMA Remote Connect - Server before configuring the CP (not in STEP 7). The CP and the communication partner of the CP must be configured in the SINEMA RC Server.

  • Page 164: Security > Vpn > Sinema Remote Connect

    SINEMA Remote Connect (CP) B.4 Security > VPN > SINEMA Remote Connect Security > VPN > SINEMA Remote Connect Remote maintenance with SINEMA Remote Connect (SINEMA RC) The application "SINEMA Remote Connect" (SINEMA RC) is available for remote maintenance purposes. SINEMA RC uses OpenVPN for encryption of the data.
  • Page 165 SINEMA Remote Connect (CP) B.4 Security > VPN > SINEMA Remote Connect VPN > General 1. Activate VPN 2. As "VPN connection type", select the option "Automatic OpenVPN configuration via SINEMA Remote Connect Server" if you wish to use communication via SINEMA Remote Connect.
  • Page 166 SINEMA Remote Connect (CP) B.4 Security > VPN > SINEMA Remote Connect Optional settings The connection establishment is configured in the "Security > VPN > Optional settings" parameter group with the parameter "Connection type". ● Update interval With this parameter you set the interval at which the CP queries the configuration on the SINEMA RC Server.

  • Page 167: Wbm Of The Tim 1531 Irc

    WBM of the TIM 1531 IRC Supported Web browsers Web browser For secure access to the Web server of the TIM the following Web browsers are suitable: ● Internet Explorer (version 11) ● Google Chrome (version 68) ● Firefox (version 62) You will find the specified Web browsers, information and any necessary addons on the Internet.

  • Page 168: General Functions Of The Wbm

    WBM of the TIM 1531 IRC C.3 General functions of the WBM Connection to the Web server of the TIM Follow the steps below to connect the PC to the Web server of the TIM: 1. Open the Web browser. 2.

  • Page 169: Start Page

    WBM of the TIM 1531 IRC C.4 Start page Symbol Function The automatic update of the WBM display is enabled. The data is fetched at the interval configured under "System > Web server". The automatic update of the WBM display is disabled. Switches on the automatic update of the WBM display.
  • Page 170 WBM of the TIM 1531 IRC C.4 Start page Start page Figure C-1 Start page of the WBM The page shows general data of the module. General ● Station name Parameter configured in STEP 7 ● Module name Parameter configured in STEP 7 ●...

  • Page 171: System

    WBM of the TIM 1531 IRC C.5 System System C.5.1 Device info Module ● Short designation Parameter configured in STEP 7 ● Article number ● Hardware product version ● Firmware version ● Rack ● Slot Module information ● Module name Parameter configured in STEP 7 Vendor information ●...

  • Page 172: System Time

    WBM of the TIM 1531 IRC C.5 System C.5.3 System time System time The current system time of the TIM is displayed in the title bar of the WBM. ● Input box for time Format: YYYY-MM-DD hh:mm:ss In the input box, you can manually enter the time and transfer it to the TIM. When making your entry, keep to the specified format.

  • Page 173: Dns Configuration

    Digitally signed and encrypted firmware prevents manipulation by third parties To be able to check the authenticity of the firmware, the firmware is digitally signed by Siemens. This allows manipulation by third parties to be detected and prevented. Configuration - DNP3...

  • Page 174: Operating Status

    WBM of the TIM 1531 IRC C.6 Maintenance Note Do not operate during the update During the update of the firmware until the TIM restarts, the WBM is not blocked. Do not perform any operations during this time (e.g. no restart). Note Do not switch off the power supply During activation of the firmware do not switch off the power supply.
  • Page 175 WBM of the TIM 1531 IRC C.6 Maintenance The buttons have the following functions: ● Run a restart When restarting, existing telecontrol connections are interrupted and cyclic processing stops. The TIM restarts. ● Reset to factory settings Note Data loss: Note the effects of a reset Before you reset, note the effects.

  • Page 176: Diagnostics

    WBM of the TIM 1531 IRC C.7 Diagnostics Diagnostics C.7.1 Events Diagnostics messages Table The table lists the last diagnostics events to occur on the TIM with the following information: ● Number Consecutive number ● Time Time of the diagnostics event ●...

  • Page 177: Notifications

    WBM of the TIM 1531 IRC C.7 Diagnostics Below you will find several examples of events that are entered in the diagnostics buffer: ● TIM startup ● Change to the configuration ● Establishment/abort of the communications connection ● Time-of-day synchronization ●...

  • Page 178: Lan

    WBM of the TIM 1531 IRC C.8 LAN C.8.1 Ethernet interface [Xn] ● The three Ethernet interfaces of the TIM are selected via the upper tabs. – X1 ... X3 ● The parameters of the selected interface are shown in the lower series of tabs: –...
  • Page 179 WBM of the TIM 1531 IRC C.8 LAN ● Settings Behavior of the network setting: – Automatic – Manual setting for transmission speed and direction dependency ● Mode Used transmission speed and direction dependency (duplex/half duplex) ● Connection medium Connected medium (copper / optical) IPv6 parameters ●...

  • Page 180: Telecontrol

    WBM of the TIM 1531 IRC C.9 Telecontrol Telecontrol C.9.1 Partner information C.9.1.1 Connection overview The tab shows you information on the communications partners and the connection status of the TIM. Table The column headers have the following meaning: ● Connection status The status of the connections to the assigned CPU and to the remote partners is shown as follows: –...
  • Page 181 WBM of the TIM 1531 IRC C.9 Telecontrol The following information is available on each subscriber: ● Information on the subscriber ● Information on the transmission path Information on the subscriber Local CPU ● Status Operating status of the local CPU ●...
  • Page 182 WBM of the TIM 1531 IRC C.9 Telecontrol – 80% limit reached When the ST7 protocol is used, the TIM switches to the forced image mode at 80 % occupation of the send buffer. – Overflow 100% occupation of the send buffer Transmission path Information on the transmission path Local CPU...

  • Page 183: Send Buffer

    WBM of the TIM 1531 IRC C.9 Telecontrol ● Connection type Display of several of the following connection properties: – PBK connection Configured S7 connection – ST7 ST7 connection via classic WAN – DNP3 DNP3 connection via classic WAN network –...
  • Page 184 WBM of the TIM 1531 IRC C.9 Telecontrol ● Free (memory spaces) Memory currently free as number of memory spaces ● Free (%) Currently free memory space in percent In brackets: Number of configured events / Max. number of events Table The column headers have the following meaning: ●...

  • Page 185: Data Points

    WBM of the TIM 1531 IRC C.9 Telecontrol – Forced image mode (14) Only ST7: When the send buffer is 80% full, the TIM switches to the forced image mode. To prevent a send buffer overflow, all data frames are treated as image frames. Send buffer frames are also treated as image frames;...

  • Page 186: Logging

    WBM of the TIM 1531 IRC C.10 Logging C.10 Logging Functions of logging On this page, you can log the data traffic of the TIM using PCAP functionality for diagnostics purposes. If an error occurs or if the TIM behaves in an unwanted manner, the communication behavior of the TIM can be recorded.

  • Page 187: Bibliography

    Bibliography Where to find Siemens documentation ● Article numbers You will find the article numbers for the Siemens products of relevance here in the following catalogs: – SIMATIC NET - Industrial Communication / Industrial Identification, catalog IK PI – SIMATIC - Products for Totally Integrated Automation and Micro Automation, catalog...
  • Page 188 Bibliography 0 /2/ SIMATIC NET TIM 1531 IRC Operating instructions Siemens AG Link: (https://support.industry.siemens.com/cs/ww/en/ps/24710/man) SIMATIC NET CP 1243-1 Operating Instructions Siemens AG Link: (https://support.industry.siemens.com/cs/ww/en/view/103948898) SIMATIC NET CP 1243-8 IRC Operating Instructions Siemens AG Link: (https://support.industry.siemens.com/cs/ww/en/ps/21162/man) SIMATIC CP 1542SP-1, CP 1542SP-1 IRC, CP 1543SP-1...
  • Page 189 Bibliography 0 /7/ SIMATIC S7-1200 Automation System system manual Siemens AG Link: (http://support.automation.siemens.com/WW/view/en/34612486) SIMATIC ET 200SP - Distributed I/O System system manual Siemens AG Link: (http://support.automation.siemens.com/WW/view/en/58649293) SIMATIC NET Industrial Ethernet / PROFINET System manual Siemens AG ● Industrial Ethernet Link: (https://support.industry.siemens.com/cs/ww/en/view/27069465) ●...
  • Page 190 Bibliography 0 /10/ Configuration - DNP3 Configuration Manual, 11/2018, C79000-G8976-C508-01...

  • Page 191: Index

    Index Internet connections, 26 Inter-station communication, 13 IP address (master), 25 IP address (station), 25 Abbreviations, 4 IPsec, 76 Classic WAN, 39 LATCH_ON/OFF, 126 Connection interrupted, 27 Connection resources, 16 Connection status - diagnostics, 135 Cross references (PDF), 4 MIB, 136 MODBUS slaves, configuration limits, 19 Data buffering, 16 Data points - Configuration, 103...
  • Page 192 Index select before operate, 53 Send buffer, 16, 114 SIMATIC NET glossary, 5 SMTPS, 72 SNMP, 136 SNMPv3, 74 Spontaneous, 117 SSL/TLS, 72 STARTTLS, 72 STEP 7 - version, 15 SYSLOG, 76 Trigger tag - resetting, 116, 131 VPN, 26, 76 WAN - creating a network, 39 Web server, 42 Configuration - DNP3...

Table of Contents