Ethernet Security for Control Network 800XA
I have a small 800xA system and a seperate control and server network. On one end of my control network I have a radio link to an external site and controller. I have need to tie into another meter down at the sight (Non ABB). This data would pass along the radio link along with the controller communications and then split off and travel to another subnet. I'm of course a little concerned and am looking for some best practices to ensure that nothing happens to my control network. Right now my system has no outside world access.
The Internet Protocol Security (IPsec) is a protocol suite for securing Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a communication session. The purpose of IPsec Configuration Tool is not primarily to encrypt the communication, but to ensure through strong authentication, that only legitimate nodes connect to the 800xA System. The IPsec Configuration Tool, allowing secure communication, can also exempt the nodes which are outside the 800xA System or the nodes that are not the Domain members.
Please go through the document 2PAA107224-510 A for more details
Data transfer capacity on control network depends upon CPU load, if network bandwidth is >1 Mbit/sec OR on network bandwidth itself, if bandwidth is < 1 Mbit/sec.
It's quite well described in system guide "3BSE041434-5xx" (look for heading "Data transfer capacity on control network")
Last but not least, IPsec communication is not applicable for AC800m controller and hence needs to be excluded, while configuring IPsec.