Security considerations for your network 3
Preventing unauthorized external access using a firewall
To reduce the risk to your network, we highly recommend to include a
firewall or some other mechanism to limit the network traffic between the
(external) central accounting center resp. control station and the (internal)
network of the gas measuring plant.
Furthermore, we recommend to allow protocols and ports only that are
actually used for data exchange with the external network, e.g. by adding
these to the white list of the firewall ( 10.5.1 Data protocols and its TCP
default port (Ethernet), p. 113).
For example:
Fig. 3-1: Router and firewall between measurement plant and control station
plus data exchange via Modbus TCP in a trusted network – example
To Next Page
Loading...
Need help?
General
