Configuring data transfer using IEC 60870-5-104 protocol

To configure data transfer via the IEC 60870-5-104 protocol using the Kaspersky Security Gateway Console:

  1. Open the Kaspersky Security Gateway Console
  2. In the Kaspersky Security Gateway node select IEC 60870-5-104.
  3. In the Data transmission settings section in the results pane, click the Change link.

    The Settings window opens.

  4. In the Transmission settings section, disable or enable the Enable data transmission option.

    If this functionality is enabled, Kaspersky Security Gateway sends the protection status of the industrial network nodes to the SCADA system. This option is disabled by default.

  5. In the Connection settings group box configure the following:
    • Device address. An auxiliary address assigned to the computer in the SCADA system. Range of possible values: 1–65535.
    • Device port. A port number for establishing a connection to the SCADA system. Range of possible values: 1–65535.
    • TCP connection timeout. The value is specified in seconds. Range of possible values: 1–255.
    • Message send timeout. The value is specified in seconds. Range of possible values: 1–255.
    • Message confirmation timeout. The value is specified in seconds. Range of possible values: 1–255.
    • Test connection timeout. The value is specified in seconds. Range of possible values: 1–255.
    • Maximum unconfirmed received messages allowed. Range of possible values: 1–32767.
    • Maximum unconfirmed sent messages allowed. Range of possible values: 1–32767.
  6. Click OK.
  7. In the Tracked data section in the results pane, click the Change link.

    The Selecting tracked data window opens. The list displays tracked data added automatically after connecting to a data source, such as Kaspersky Security Center and/or Kaspersky Industrial CyberSecurity for Networks.

  8. Select or clear check boxes next to the names of computers to enable or disable the tracking of their availability and protection status. The computer is available a protection application and the Network Agent are running on it.

    If tracking is enabled, data will be transmitted to the SCADA system.

    If tracking is disabled, data will not be transmitted to the SCADA system.

    If there is no connectivity between the computer or Kaspersky Security Gateway and the Kaspersky Security Center Administration Server, the value of 3 (unavailable) is sent.

  9. If required, edit or add a service tag in the Service tag column. You can use the service tag to filter data received in the SCADA system. The tag may consist of numbers only.
  10. Click OK.

You can configure data transfer over the IEC 60870-5-104 protocol using the ProtocolEICSettings.xml configuration file in the C:\ProgramData\Kaspersky Lab\Security Gateway\Settings folder.

Page top