we must physical separate the network connection between 800xA and our office net. We have to use a data diode like waterfall or similar. Usual firewall is not enough.
Applications we use on office site is DataDirect Excel addin and SmartClient application and Excel interface. We only read data from the system.
Does anyone have experiences with this?
And what protocols do the applications use? OPC or other?
You can make rules for whatever protocol you use, as long as you know the port numbers etc.
We have OSI pi, outgoing emails, Mcafee updates, windows updates and SQL queries across the firewall.