ICT PRT-ZX16-DIN Installation Manual page 26

Primary Communication Channel
⦁
The first attempt to send a status change signal shall utilize the primary communication channel.
The Report IP and Contact ID services must be programmed and enabled within the Protege system, and
the CID service must be set as the backup service. The following options are required:
- The Contact ID Reporting Service must be enabled and the Service Mode must be configured to start
with the operating system.
- Refer to the section
- The Report IP Service must be enabled as the primary communication channel and the Service Mode
must be configured to start with the operating system. The Reporting Protocol must be set to
ArmorIP, and the Backup Service must be configured to use the Contact ID Service.
- Refer to the section
- All ULC S304 P3 applications must transmit signals simultaneously over both the Contact ID Reporting
Service and the Report ID Service. This will occur automatically with the above programming.
⦁ Status Change Signal
An attempt to send a status change signal shall utilize both primary and secondary communication
channels.
⦁ Local Annunciation if Signal Reporting Failure
Failure of the primary communication channel or secondary communication channel shall result in a trouble
signal being transmitted to the signal receiving center within 240 seconds of the detection of the fault.
Failure of either communication channel shall be annunciated locally within 180 seconds of the fault.
The following options must be enabled in the Protege system:
- The Ethernet Link Failure trouble input must be programmed.
- The Trouble Input Area must be armed. Refer to the section
the Operator Reference Manual.
- The Log Modem Events to Event Buffer option must be selected in the Contact ID Reporting Service.
⦁ Network and Domain Access
Neither the subscriber control unit nor the signal receiving center receiver shall be susceptible to security
breaches in general-purpose operating systems.
Network access policies should be set to restrict unauthorized network access and "spoofing" or "denial of
service" attacks.
⦁ Ethernet Connections
All ethernet network connections shall be installed within the same room as the equipment.
⦁ Encryption
For active communications channel security, encryption shall be enabled at all times.
The ArmorIP-E (UDP) protocol must be used and the Encryption Type must be set to AES-256.
The following options must be enabled for the Report IP service in the Protege system.
- The Reporting Protocol must be set to ArmorIP (UDP) Encrypted. The AES key must be set as
specified by monitoring station.
- Refer to the section
⦁ Server Configuration
Where a server is employed for control over network addressing, encryption or re-transmission, such shall
be designed to remain in the "on state" at all times.
Communicators are not suitable for active communication channel security and medium or high risk
applications unless such can be "online" at all times, have a minimum 128 bit encryption scheme, have
encryption enabled, network and domain security implemented.
Network access policies shall be set to restrict unauthorized network access and "spoofing" or "denial of
service" attacks.
⦁ Internet Service Provider (ISP)
The Internet Service Provider (ISP) providing service shall meet the following requirements:
PRT-ZX16-DIN | Protege DIN Rail 16 Input Expander | Installation Manual
Contact ID in the Operator Reference Manual.
Report IP in the Operator Reference Manual.
Report IP | General in the Operator Reference Manual.
Trouble Inputs | Areas and Input Types in
26