Support

Support for business applications

Kaspersky Industrial CyberSecurity for Nodes

Using Kaspersky Security Gateway

Configuring data transfer settings using communication protocols

Configuring data transfer using IEC 60870-5-104 protocol vai the configuration file

Kaspersky Industrial CyberSecurity for Nodes
Нет результатов
Online Help
FAQ Download Forum Contact support Recovery tools Product videos

Configuring data transfer using IEC 60870-5-104 protocol vai the configuration file

August 3, 2023

ID 165937

To configure data transfer using IEC 60870-5-104 protocol via Kaspersky Security Gateway configuration file:

  1. Use any available text editor to open the configuration file C:\ProgramData\Kaspersky Lab\Security Gateway\Settings\ProtocolIECSettings.xml.
  2. Specify the common settings of the Kaspersky Security Gateway connection to the SCADA system:
    • Device address. An auxiliary address assigned to the computer in the SCADA system. Range of possible values: 0–65535.
    • Device port. A port number for establishing a connection to the SCADA system. Range of possible values: 0–65535.
    • TCP connection timeout. The value is specified in seconds. Range of possible values: 1–255.
    • Message send timeout. The value is specified in seconds. Range of possible values: 1–255.
    • Message confirmation timeout. The value is specified in seconds. Range of possible values: 1–255.
    • Test connection timeout. The value is specified in seconds. Range of possible values: 1–255.
    • Maximum unconfirmed sent messages allowed. Range of possible values: 1–32767.
    • Maximum unconfirmed received messages allowed. Range of possible values: 1–32767.
  3. Specify the details of the monitored computers. To do so, in the <MonitoredHosts/> section, specify Name and Address pairs using <MonitoredHosts Name=“” Address=“”/> tags, separated by a semi-colon (“;”):
    • Name. Name of the computer with Kaspersky Industrial CyberSecurity for Nodes installed, whose protection status is sent to the SCADA system by Kaspersky Security Gateway.
    • IP address. IP address of the computer with Kaspersky Industrial CyberSecurity for Nodes installed, whose protection status is sent to the SCADA system by Kaspersky Security Gateway.
  4. Save the configuration file.
  5. Restart Kaspersky Security Gateway service to apply the new settings.

A sample configuration file for the IEC 60870-5-104 protocol is provided below:

Example:

<?xml version=“1.0” encoding=“utf-8”?>

<KSGTW-Settings>

<DataTransmissionOptions>

<SlaveAddress>1</SlaveAddress>

<SlavePort>2404</SlavePort>

<TcpConnectionTimeoutSeconds>30</TcpConnectionTimeoutSeconds>

<MessageSendTimeoutSeconds>15</MessageSendTimeoutSeconds>

<MessageConfirmationTimeoutSeconds>10</MessageConfirmationTimeoutSeconds>

<ConnectionTestTimeoutSeconds>20</ConnectionTestTimeoutSeconds>

<MaxUnconfirmedMessagesAllowSend>12</MaxUnconfirmedMessagesAllowSend>

<MaxUnconfirmedMessagesAllowRecieve>8</MaxUnconfirmedMessagesAllowRecieve>

<EnableDataTransmission>yes</EnableDataTransmission>

<SpontaneousTransmission>yes</SpontaneousTransmission>

</DataTransmissionOptions>

<MonitoredHosts/>

<MonitoredDevices/>

</KSGTW-Settings>

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.