×
Siemens Industry Online Support
Siemens AG
Entry type: Application example Entry ID: 26662448, Entry date: 08/24/2018
(17)
Rate

Overview: Secure Remote Access with VPN

  • Entry
  • Associated product(s)
An introduction to IP based remote Networks and to the related product range of Siemens. For the possible configurations of an IP based remote network there is an overview along with the requirements and the link to the configuration description.

The geographical distribution of automation cells increases the demand for telecontrol (remote control) and teleservice (remote maintenance/diagnostics) in a remote network. The comprehensive Remote Networks portfolio from Siemens offers connection to both conventional (dedicated line, telephone) and IP-based infrastructures (e.g. the Internet).

Solution
This document focuses on IP-based networks. You can find an overview of the classic dial-up networks in the archive below.
As remote access to the plant is implemented via a public network (e.g., the Internet), protection against data manipulation and spying is particularly important. For this purpose the following modules of the Siemens Security Integrated Portfolio in virtual private networks (VPN) are used:

  • SCALANCE S615
  • SCALANCE SC-600
  • SCALANCE M-800
  • SINEMA Remote Connect
  • CP x43-1 Adv.
  • CP 1x43-1
  • CP 1243-7
  • CP 1243-8 IRC
  • CP 1543SP-1
  • CP 1542SP-1 IRC
  • CP 1628
  • TS Adapter IE Advanced
  • LOGO! CMR
  • RTU 3000C


Image 01

Advantage
Through a combination of different security measures such as firewalls and VPN, the security modules protect individual devices or even entire automation cells against:
  • Data espionage
  • Data manipulation
  • Unwanted access

Structure of the document
The possible configurations of an IP-based remote network are divided into groups. The criterion for this subdivision is the used vpn protocol:

  • VPN with IPsec
  • VPN with OPenVPN
  • VPN with SSTP

In this document you will obtain an introduction to Remote Networks and the related product range of  Siemens. For the possible configurations there is an overview along with the requirements and the link to the configuration description.

Download
  Documentation (2,2 MB) 

Archive
Overview document with basic information on and selection aids for remote access (dial-up-oriented)
Example configuration via Dial in/out Routers.
 Registrierung notwendig  Archive file (2,6 MB)

Last Changes
Add new Configurationdocument (link).

Security information
In order to protect technical infrastructures, systems, machines and networks against cyber threats, it is necessary to implement – and continuously maintain – a holistic, state-of-the-art IT security concept. Siemens’ products and solutions constitute one element of such a concept. For more information about cyber security, please visit
https://www.siemens.com/cybersecurity#Ouraspiration.