Network Security > DPI > OPC Enforcer
Network Security
RM GUI HiSecOS EAGLE20/30
Release
3.0
09/2015
169
Network Security > DPI > OPC Enforcer
4.10 Deep Packet Inspection OPC
Enforcer
This dialog allows you to specify the settings for the OPC Content Inspector.
OPC is an integration protocol for industrial environments. The DPI OPC
Enforcer is a function that supports the network security. The device blocks
data traffic that violates the specified DPI OPC Enforcer rules. Upon request,
the device verifies the data packets for their plausibility and their fragment
characteristics. The device verifies and observes OPC data connections and
helps protect against invalid or fake data packets. The function dynamically
activates TCP ports for each data connection. When requested by an OPC
server, the device sets up the data connection only between the OPC server
and the related OPC client.
Note: When applying the rules saved in the device to the data stream and
when activating/deactivating the "Routing" function on a router interface, the
device removes the state information from the packet filter. This includes
potential DCE RPC information of the OPC enforcer. In the process, the
device interrupts open communication connections.
Information
Parameters Meaning
Uncommited
changes present
Displays whether the DPI OPC Enforcer rules applied to the data stream
differ from the rules saved in the device.
Possible values:
unmarked
The device applies the saved DPI OPC Enforcer rules to the data
stream.
marked
At least one of the DPI OPC Enforcer rules saved in the device
contains modified settings.
When you click the "Commit Changes" button, the device applies the
specified DPI OPC Enforcer rules.
To Next Page
Loading...