1. Manuals
  2. Brands
  3. Siemens Manuals
  4. Controller
  5. SIMATIC S7-1200 CP 1243-8 IRC
  6. Operating instructions manual

Creating The Vpn Connection Telecontrol Server; Establishment Of Vpn Tunnel Communication Between The Cp And Scalance M - Siemens SIMATIC NET TeleControl S7-1200 CP 1243-1 Operating Instructions Manual

Hide thumbs Also See for SIMATIC NET TeleControl S7-1200 CP 1243-1:
Table of Contents

Advertisement

Configuration
4.8 Security
3. With the right mouse button, select "Enable all members" in the shortcut menu.
The lower-level node appears again temporarily in the tunnel list.
4. Select the lower-level node in the tunnel list.
5. With the right mouse button, select "Delete entry" in the shortcut menu.
Result: The lower-level node is now fully disabled. VPN tunnel communication can be
established.
4.8.10.4

Creating the VPN connection telecontrol server

Configuration of a VPN connection between CP and TCSB
For secure communication via a VPN tunnel, the communications partners are assigned to a
common VPN group. The configuration of a VPN connection between CP and TCSB is not
directly possible because the telecontrol server cannot be configured in STEP 7.
To configure the communication between the CP 1243-1 and TCSB via a VPN connection,
follow the steps below:
● Create a PC station as a substitute for the telecontrol server.
This PC station serves as a placeholder for the telecontrol server only for configuration of
the security group and it is not required for any other purpose.
● To set up the security functions you then have the following alternative options:
– Install a CP 1628 (security module) on the computer of the telecontrol server and
– Install the SOFTNET Security Client (license required) on the computer of the
With both options you achieve the requirements at the TCSB end for secure communication
between the CPs of the remote station and the telecontrol server via secure VPN
connections.
Configure the security functions of the CPs as described above.
4.8.10.5

Establishment of VPN tunnel communication between the CP and SCALANCE M

Create a VPN tunnel between the CP and a SCALANCE M router as described for the
stations.
VPN tunnel communication will only be established if you have selected the check box
"Perfect Forward Secrecy" in the global security settings of the created VPN group ("VPN
groups > Authentication").
If the check box is not selected, the CP rejects establishment of the tunnel.
62
assign the CP 1243-1 and the CP 1628 to the same security group in the
configuration.
telecontrol server and configure the security functions in the STEP 7 project.
Operating Instructions, 12/2016, C79000-G8976-C365-02
CP 1243-1

Advertisement

Table of Contents
loading

Related Manuals for Siemens SIMATIC NET TeleControl S7-1200 CP 1243-1

Related Content for Siemens SIMATIC NET TeleControl S7-1200 CP 1243-1

Table of Contents