EasyManua.ls Logo

Siemens SIMATIC NET SCALANCE S615 - Page 15

Siemens SIMATIC NET SCALANCE S615
78 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
If a secure alternative is available for a protocol, use it.
The following protocols provide secure alternatives:
SNMPv1/v2 → SNMPv3
Check whether use of SNMPv1 is necessary. SNMPv1 is classi󹪝ed as non-secure. Use the
option of preventing write access. The product provides you with suitable setting options.
If SNMP is enabled, change the community names. If no unrestricted access is necessary,
restrict access with SNMP.
HTTP → HTTPS
Telnet → SSH
NTP → Secure NTP
TFTP → SFTP
TIA Portal Cloud Connector using a secure connection. Use the "TIA Portal Cloud
Connector" integrated in the product over a VPN solution (e.g. SINEMA RC).
Con󹪝gure the 󹪝rewall settings of the SCALANCE M800/S615 (e.g. prede󹪝ned IPv4 rules
"Cloud Connector" to prevent unauthorized access of network devices to the "TIA Portal
Cloud Connector Server").
Using a 󹪝rewall, restrict the services and protocols available to the outside to a minimum.
For the DCP function, enable the "Read Only" mode after commissioning.
For command SMS, use the identi󹪝er to secure your SMS messages. You can set a
con󹪝gurable value for a SCALANCE M device that, in addition to the phone number, must
match the received identi󹪝er of the SMS. You con󹪝gure the identi󹪝er on the WBM page
"System > SMS > SMS Command" or with the CLI commands sms-cmd idx indentifier
and sms-cmd sender.
List of available services
The following is a list of all available protocols and services as well as their ports through which
the device can be accessed.
The table includes the following columns:
Service
The services that the device supports.
Protocol / Port number
Port number assigned to the protocol.
Default port status
The port status on delivery (factory setting) distinguishes between local and external access.
Local access: The port is accessed via a local connection (vlan1).
External access: The port is accessed via an external connection (vlan2).
Con󹪝gurable port/service
Indicates whether the port number or the service can be con󹪝gured via WBM / CLI.
Security recommendations
SCALANCE S615
Operating Instructions, 05/2023, C79000-G8976-C389-08 15

Table of Contents

Other manuals for Siemens SIMATIC NET SCALANCE S615

Preview: Configuration Manual
Configuration Manual320 pages

Related product manuals