11
ABB ABILITY
TM
EDGE INDUSTRIAL GATEWAY
70
11.3.2 Device firewall
Network security in ABB Ability
TM
Edge Industrial Gateway is accomplished by defining a set of rules used
by device. Internal firewall is a software application which allows or blocks any software program
executing within ABB Ability
TM
Edge Industrial Gateway from establishing a connection on the network.
The network connection can be an outgoing connection initiated from ABB Ability
TM
Edge Industrial
Gateway or an incoming connection to ABB Ability
TM
Edge Industrial Gateway. The outgoing connection
rules are defined by creating outbound rules and the incoming connection rules are defined by creating
inbound rules.
The rules specify whether to allow or block a connection based on some defined criteria.
The table below shows a brief summary of the rules available:
The port 5003 can be firewalled using Provision Tool. User can add Local view (web server) to be available in eth0
—
11.4 Time service
Time used in ABB Ability
TM
Edge Industrial Gateway can be synchronized using NTP client to an NTP
Server like Google NTP Server.
User can configure maximum three NTP Servers using Provisiong Tool. By default, one of the NTP time
servers is shipped along with the ABB Ability
TM
Edge Industrial Gateway (with time.google.com).
User can configured all the three NTP Servers using CCT tool.
Time Synchronization is performed at every Powerup of ABB Ability
TM
Edge Industrial Gateway & there
after everyone hour.
Rule name Rule description
HTTPS
for ABB Ability
TM
Edge Industrial Gateway.
MODBUS-TCP
Modbus messages which are further handled by Modbus Slave in ABB Ability
TM
Edge Industrial Gateway.
NTP
NTP messages which are further handle by NTP client in ABB Ability
TM
Edge Industrial Gateway.
Reject ALL incoming SSH
ABB Ability
TM
Edge Industrial Gateway.
Allow outbound DNS
—
Figure 27
—
Note: It is recommended
to set the NTP
synchronization to local
network stratum 1 clock
To Next Page
Loading...
