VPN tunnel between SCALANCE M-800 and security CPs
4.2 Secure VPN tunnel with PSK
SCALANCE M-800 Getting Started
150 Getting Started, 06/2015, C79000-G8976-C337-04
The configuration of the tunnel connection is complete. The settings are saved in the
configuration file.
Downloading the configuration to the CP and saving the M-800 configuration
Downloading the configuration to the CP
1. Close the Security Configuration Tool.
2. In HW Config, select the "Station" > "Save and Compile" menu.
3. Download the new configuration to the security module using the "PLC" > "Download to
Module …" menu.
– For CP 1628: If the download was completed free of errors, the security module
restarts automatically and the new configuration is activated.
– For CP 343-1 Advanced or CP 434-1 Advanced: Restart the S7 CPU following the
download, to activate the new configuration
Saving the SCALANCE M-800 configuration
1. In STEP 7, open the Security Configuration Tool with the "Edit" > "Security Configuration
Tool" menu command.
2. In the content area, select the "M-800" and select the menu command "Transfer" > "To
module(s) …".
3. Save the configuration file "Projectname.M-800.txt" in your project directory.
The following file will be saved in the project directory:
● Configuration file: projectname.M-800.txt
The configuration file contains the exported configuration information for the SCALANCE M-
800.
IPsec VPN > Connections > VPN Standard Mode -
Security > IPSec VPN > Remote End > Remote Mode: Standard
Address of the remote site's VPN gateway:
Security > IPSec VPN > Remote End > Remote Address:
Authentication method: Pre Shared Key
Security > IPSec VPN > Authentication > Authentication: PSK
Pre Shared Key: 12345678 Security > IPSec VPN > Authentication > PSK und PSK Confirma-
Remote ID: U28098881@GEA32 Security > IPSec VPN > Authentication > Remote ID
not required. In WBM, the IP address of the Industrial Ethernet
interface is entered. In this example, this is 192.168.184.2
To Next Page
Loading...
