Using the DNP3.0 Protocol via Digi Device Servers and Terminal Servers



Similar documents
Redundancy in Serial-to-Ethernet Communications. White Paper

Digi Connect WAN Application Guide Using the Digi Connect WAN and Digi Connect VPN with a Wireless Router/Access Point

Quick Note 32. Using Digi RealPort with a Digi TransPort Router. UK Support September 2012

WAN Failover Scenarios Using Digi Wireless WAN Routers

Technology Spotlight on Cellular Data Networking for SCADA system networks. Presented by Teamwork Solutions, Inc.

SSL (Secure Socket Layer)

Digicom Remote Control for the SRT

Client-Server SCADA Technology

USER GUIDE. Ethernet Configuration Guide (Lantronix) P/N: Rev 6

Digi Connect WAN Application Helper NAT, GRE, ESP and TCP/UPD Forwarding and IP Filtering

USING THE XPERT2 / 9210B ON A TCP/IP NETWORK

Securing Modern Substations With an Open Standard Network Security Solution. Kevin Leech Schweitzer Engineering Laboratories, Inc.

ETHERNET WEATHER STATION CONNECTIONS Application Note 33

June 2013 v. 0.2

Modbus and ION Technology

How To Configure SSL VPN in Cyberoam

Setting up VPN connection: DI-824VUP+ with Windows PPTP client

This techno knowledge paper can help you if: You need to setup a WAN connection between a Patton Router and a NetGuardian.

Experiment # 6 Remote Access Services

Tunnels and Redirectors

FINS Gateway For OMRON PLCs

The Shift to Wireless Data Communication

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

Multi-Master DF1 Protocol User Guide

ZyWALL 5. Internet Security Appliance. Quick Start Guide Version 3.62 (XD.0) May 2004

EZ-View Network Communications Guide

Using AnywhereUSB to Connect USB Devices

A More Secure and Cost-Effective Replacement for Modems

EMG Ethernet Modbus Gateway User Manual

: Interconnecting Cisco Networking Devices Part 1 v2.0 (ICND1)

Remote Serial over IP Introduction on serial connections via IP/Ethernet

Setting up Digi Connect Wi-SP or Digi ConnectPort TS W Devices On a Secured Wireless Network for use with Veriteq viewlinc

How To Configure Apple ipad for Cyberoam L2TP

Pre-lab and In-class Laboratory Exercise 10 (L10)

IP Address and Pre-configuration Information

What you don t know about industrial GSM/GPRS modem communications

Multi-Homing Dual WAN Firewall Router

Firewall VPN Router. Quick Installation Guide M73-APO09-380

Chapter 6 Using Network Monitoring Tools

Secure Proxy Server Installation Guide

TruePort Windows 2000/Server 2003/XP User Guide Chapter

Lab Organizing CCENT Objectives by OSI Layer

BIT COMMANDER. Serial RS232 / RS485 to Ethernet Converter

CONTROL MICROSYSTEMS DNP3. User and Reference Manual

Process Control and Automation using Modbus Protocol

Smart Tips. Enabling WAN Load Balancing. Key Features. Network Diagram. Overview. Featured Products. WAN Failover. Enabling WAN Load Balancing Page 1

How to configure your Thomson SpeedTouch 780WL for ADSL2+

Setting up VPN Access for Remote Diagnostics Support

Best practices on cellular M2M deployment. Paul Bunnell November 2014

VPN. Date: 4/15/2004 By: Heena Patel

TruePort HP-UX User Guide Chapter

How To Set Up A Modbus Cda On A Pc Or Maca (Powerline) With A Powerline (Powergen) And A Powergen (Powerbee) (Powernet) (Operating System) (Control Microsci

Digi Cellular Gateway Security Overview

Chapter 6 Using Network Monitoring Tools

TRP-C31M MODBUS TCP to RTU/ASCII Gateway

Digi Connect WAN Application Helper Configuring and Testing the Digi Connect WAN GSM

IP SERIAL DEVICE SERVER

SCADA System Security. ECE 478 Network Security Oregon State University March 7, 2005

ewon-vpn - User Guide Virtual Private Network by ewons

CREATING AN IKE IPSEC TUNNEL BETWEEN AN INTERNET SECURITY ROUTER AND A WINDOWS 2000/XP PC

DOORKING SYSTEMS 1830 SERIES NETWORK WORKSHOP LAN APPLICATIONS ACCESS CONTROL SOLUTIONS LOCAL AREA NETWORK (LAN) CONNECTION REV 04.

How To Check If Your Router Is Working Properly

Wireless Router Quick Start Guide Rev. 1.0a Model: WR300NQ

Quick Note 026. Using the firewall of a Digi TransPort to redirect HTTP Traffic to a proxy server. Digi International Technical Support December 2011

User Manual Revision English Converter / Adapter Ethernet to RS232 / RS485 (Order Code: HD HD M HD HD M)

USR-TCP232-T Hard Version: V2.0 Doc Version: V

Comparison of Routable Control System Security Approaches

1-Port Wireless USB 2.0 Print Server Model # APSUSB201W. Quick Installation Guide. Ver. 2A

How to setup PPTP VPN connection with DI-804HV or DI-808HV using Windows PPTP client

WAN Data Link Protocols

How To Create An Easybelle History Database On A Microsoft Powerbook (Windows)

N300 WiFi Range Extender WN2000RPT User Manual

Applicazioni Telematiche

ERserver. iseries. Remote Access Services: PPP connections

PortShare Software Quick Start Guide. PortShare

GregSowell.com. Mikrotik Basics

SCADA Questions and Answers

Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials.

File Transfer Examples. Running commands on other computers and transferring files between computers

RuggedCom Solutions for

Technical Support Information Belkin internal use only

Remote Cellular TCP/IP Access to Modbus Ethernet and Serial Devices

H0/H2/H4 -ECOM100 DHCP & HTML Configuration. H0/H2/H4--ECOM100 DHCP Disabling DHCP and Assigning a Static IP Address Using HTML Configuration

Almond. Quick Setup Guide

Smart Solutions for Network IP Migration

50-Port 10/100/1000Mbps with 4 Shared SFP. Managed Gigabit Switch WGSW Quick Installation Guide

Palomar College Dial-up Remote Access

Connecting and Setting Up Your Laptop Computer

STATIONARY UNIT VERSION 1.1

Remote PC Guide for Standalone PC Implementation

Connecting to the FILTER Virtual Private Network (VPN)

Install MS SQL Server 2012 Express Edition

Quick Start Guide. Cerberus FTP is distributed in Canada through C&C Software. Visit us today at

Prestige 324. Prestige 324. Intelligent Broadband Sharing Gateway. Version 3.60 January 2003 Quick Start Guide

Chapter 5. Data Communication And Internet Technology

Appendix A: Configuring Firewalls for a VPN Server Running Windows Server 2003

How To Industrial Networking

Guideline for setting up a functional VPN

A Perle Systems Discussion Paper For System Administrators

Plant automation and telecontrol in one system. SIMATIC PCS 7 TeleControl SIMATIC PCS 7. Answers for industry.

Transcription:

Using the DNP3.0 Protocol via Digi Device Servers and Terminal Servers For years, electric power utilities have relied on Digi internal serial cards (i.e., DigiBoard solutions) to connect UNIX, Linux and Windows based Supervisory Control and Data Acquisition (SCADA) applications to remote power control and monitoring devices. These devices include, but are not limited to, Remote Terminal Units (RTUs), Intelligent Electronic Devices (IEDs), meters, relays and breakers. While protocols such as Modbus and others are used in SCADA systems, this document specifically discusses Distributed Network Protocol (DNP). Serial ports on the SCADA system in the central office typically connect to modem banks. These modems connect to leased line or dial-up modems, then to serial ports on remote devices. Large substations can have 128 or more serial devices. Smaller locations can range from one to four devices. A typical installation is 16-32 ports. Today, more and more utilities are connecting remote substations and even pole-mounted devices via Ethernet (wireless and fiber) TCP/IP connections. This application note describes two proven methods for DNP3 communications using Digi One and PortServer device servers and terminal servers. These Digi servers can be located at remote locations, eliminating costly modem connections while providing real-time access to most any serial device via TCP/IP communications. Most SCADA and other control applications provide two methods of communicating to serial ports: 1. TTY or COM ports: Multiport internal serial adapters provide additional TTY or COM ports to an application. Drivers are loaded on the SCADA host computer to create and recognize the additional ports. 2. TCP Sockets: Many newer SCADA applications support this method of direct TCP/IP communications. DNP data is sent to serial ports of a remote terminal server via a TCP Socket connection using the terminal server s IP address; a TCP port number associated with the individual serial port is used to identify the data path (e.g. 192.168.10.5:2101). DNP data is simply encapsulated into TCP by the sender (i.e., SCADA master application) and then removed by the receiver (the Digi server). [Note: The Digi ports are set to TCP server mode. See the Digi server manuals for details.] Digi device and terminal servers support both methods, providing seamless transition from internal serial ports to network connected serial ports. Following is a description of how it works. TTY/COM Port Redirection Via RealPort Digi s patented serial port redirection protocol and driver, RealPort, creates real TTY or COM port devices on a local SCADA system; the physical ports can be located anywhere an Ethernet (hardwired or wireless) TCP/IP connection is available. The user installs the RealPort driver on the SCADA system, which creates additional COM or TTY ports. These serial ports are mapped to the IP addresses of the remote Digi servers. RealPort can handle virtually any serial protocol (including DNP, Modbus and others), just as if it is on a computer s local serial port. It is ideal for legacy applications that support only local TTY or COM serial ports. RealPort supports many different operating systems. [See www.digi.com/support for a current list of supported operating systems.] Also note that some versions of RealPort and Digi PortServer TS device and terminal servers support encryption to provide secure data communications between the SCADA system and the Digi server.

Example: A PortServer TS 16 terminal server is installed at a remote substation. The substation is connected to a UNIX based SCADA server by means of Ethernet radio routing TCP/IP. TTY ports are mapped to the IP address of the PortServer TS 16. For example, /dev/tty1 thru /dev/tty16 are located on a PortServer TS 16 at 10.0.1.12. Central Office One TCP Socket Connection Digi PortServer TS16 10.0.1.12 SCADA UNIX Server with RealPort Bridge/ Router DNP Serial Data tty01 tty02 tty16 tty15 tty03 tty14 Substation RTUs, IEDs, etc. /dev/tty01 - /dev/tty16 Figure 1 - RealPort Connections RealPort works with all Digi device and terminal servers. RealPort has five distinct advantages over other port redirectors: 1. Only one TCP socket connection is used per device or terminal server. As shown above, all 16 ports communicate over one socket. Other redirectors use one socket connection per port. 2. RealPort has virtually no limit on the number of TTY or COM ports supported. The limiting factor is usually the number of ports supported by the application. 3. Port communications parameters are controlled by the application. That is, once the Digi device has been configured for RealPort no further port configuration is required. 4. RealPort is WAN friendly, meaning it communicates well over slower WAN speeds and has robust reconnection capabilities. 5. RealPort is optimized for low latency. 6. RealPort now supports encryption on certain PortServer TS models. Setting up a PortServer or Digi One for use with RealPort is simple. Via the WebUI select Serial Port > Port 1 (or whichever port is the first port to be used with RealPort) and select the RealPort profile. Use the Copy function to copy the RealPort profile to other ports. If all ports are not used for RealPort, it is recommended to leave one port set to Terminal for local console port access to Digi International 2 March 2004

the TS. Figure 2 - Configure a Port for RealPort No other changes are needed. The application controls the serial port parameters such as bit rate, parity and flow control. TCP Socket Connections Most new and some older applications support direct port communications via TCP sockets. Instead of using a COM or TTY port, the SCADA application communicates DNP data directly to the terminal server serial port via: The IP address of the terminal server A TCP port number associated with the physical port on the terminal server For example, Port 1 on a PortServer TS would be accessed via TCP Port 2101; Port 2 uses port 2102; port 3 uses 2103 and so on. These TCP port numbers are derived from the base socket of the Digi device, which by default is 2000. [Note the default TCP port for DNP is 20000. Most DNP SCADA applications allow this to be changed when creating TCP socket connections. If not, you can still use a single-port Digi device server like the PortServer TS 1 by setting the base socket to 19899, or use COM/TTY port redirection via RealPort.] Serial DNP polls are encapsulated into TCP by the application, sent to the Digi device or terminal server, and un-encapsulated at the serial port. DNP responses are handled in reverse order. Here is an example diagram using TCP sockets: Digi International 3 March 2004

Central Office Bridge/ Router Digi PortServer TS16 10.0.1.12 10.0.1.12:2101 SCADA Server Using TCP Sockets 10.0.1.12:2102 10.0.1.12:2103 Substation RTUs, IEDs, etc. Figure 3 - TCP Socket Connection Applications supporting socket connections do not require RealPort. However each port does require one TCP socket which may not be as efficient as using RealPort. These steps are used to configure a Digi port for socket connection via the WebUI: 1. Login into the Digi s WebUI using a standard web browser that supports frames 2. Select Serial Port 3. Select the serial port to configure 4. Select TCP Socket Profile and click Apply 5. Leave the default setting of TCP Server Figure 4 - TCP Server Setting Digi International 4 March 2004

6. Scroll down and select Basic Serial Settings. Enter the proper serial port parameters and click Apply. Figure 5 - Serial Port Settings 7. Click Return to Serial Ports and copy this configuration to other ports as needed, or select other ports as above. As noted above, it is recommended to leave one port set to Terminal for local console port access to the PortServer TS. Configuring Digi One and PortServer TS Device & Terminal Servers Digi makes it easy to find and configure units on a network. The screenshots above show the WebUI. Using Digi s Setup Wizard to initially configure the terminal server is even easier. The Setup Wizard will find all Digi servers on the local network, allow you to chose the one to configure, optionally assign it an IP address, and determine a profile for one, all or select ports. It will then send the configuration to the unit and reboot it. The Digi server is then ready to use. A sample screen Digi International 5 March 2004

shot is shown for a RealPort configuration. Configuration changes or setting advanced options are done via the WebUI. UNIX and Linux users may prefer to use the full command line interface available via telnet, SSH or direct serial port connection. Digi One and PortServer device and terminal servers range from one- to 64-ports. 802.11b wireless and hardened (i.e., extended temperature range) units are available. RealPort support is available for a plethora of different operating systems. Many electric utilities and cooperatives have proven Digi terminal and device servers work reliably with DNP. Please contact your local Digi reseller or Digi directly at 877-912-DIGI or www.digi.com for more details. FAQ Q: Does Digi support DNP3 over Ethernet / TCP/IP? A: Yes. See the explanations above for details. Native DNP over TCP support is not required to use Digi device and terminal server serial ports. Q: Are other protocols such as Modbus supported? A: Yes. Like DNP, most serial protocols work fine using either RealPort or sockets or a serial tunnel (where two Digi servers are used to connect serial ports via TCP/IP). For Modbus, some models of Digi device servers provide additional functionality such as Modbus/TCP to Modbus RTU/ASCII serial bridging and multi-master support (i.e., multiple masters can access one Modbus slave). Q: Do Digi device and terminal servers support UDP? A: Yes. Q: What about security? Are RealPort connections secure? How about TCP socket connections? A: Many utility networks are private, some are secured by VPN. Digi is has added security in these ways: RealPort: Some versions of RealPort and device/terminal servers support encryption. More work is being done on this and support is expanding. Check with your Digi rep on latest developments. SSH: Many Digi device/terminal servers support Secure Shell (SSH) Server. If an application supports SSH client, then remote serial ports can be accessed securely via SSH. Digi International 6 March 2004

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information