Protect control networks from office network problems

Three techniques—overlapped VLANs, rate limiting, and port security—can help safeguard control networks from problems with office networks or equipment such as Windows PCs.

 

 

     PROTECTING PLANT NETWORKS
  Virutal Local Area Network
 

Overtapped VLANs, rate limiting, and port security can help protect control networks from problems with office networks.

Bennet Levine, R&D manager at Contemporary Controls, says an overlapped VLAN is a special type of virtual local area network (VLAN) provided by managed switches, which can allow one or multiple devices to have access to more than one VLAN. “That is, one or several devices can exist in multiple VLANs,” says Levine. “All other communications between the VLANs is blocked. For example, such an arrangement can allow a SCADA system to be shared between the office network VLAN and the control network VLAN, while blocking all other access between these VLANs. This enables SCADA communication with control network devices, and allows office network devices to determine the control network status, while protecting the rest of the control network from office network problems.”

Rate limiting is a managed-switch feature that can limit the bandwidth consumed by devices connected to specific ports of the switch. Users can specify a maximum bandwidth for each port of the switch. This can be used, for example, to limit the level of traffic sent to a sensitive piece of equipment. Another use of this feature is to limit traffic sent to the control network from the office network. “In this way excessive traffic problems created by the office network, such as broadcast or directed-message storms, can be controlled by rate limiting,” explains Levine. “It’s recommended that rate limiting be used on all switch ports that connect to any Windows PCs. Rate limiting can also control the level of multicast messages.”

Port security can be used to control which devices can communicate through specific ports of a managed switch. This can determine which office network devices can communicate with the control network. For example, port security can be used to only allow the plant manager and the engineering manager to have access to the control network from their computers on the office network.

More News:

  • Patent Dispute Settled Between Rockwell Automation and Beckhoff Automation

    Rockwell Automation's linear motor business, including its recent Jacobs Automation acquisition, has developed a substantial portfolio of patents comprising over 100 issued patents on linear motor technology alone.

  • Mergers, Acquisitions Alliances and Noteworthy News in Robotics

    Iten Industries, manufacturer of advanced composite components and materials headquartered in Ashtabula, Ohio, is now offering additive manufacturing and 3D printing services.

  • U.S. Economy Looks Up for Manufacturing Industries

    The August PMI is led by the highest recorded New Orders Index since April 2004, when it registered 67.1%.

  • ASME Forum Ignites 21st-Century Engineering

    Founder and president of HMI/SCADA software developer Iconics, Russ Agrusa, said the company is focusing on how to harness big data on any device and in any class of applications, and turn it into predictive analytics in manufacturing and business intelligence.

  • New Customer Care Center for Endress+Hauser

    To help customers keep up with today's challenges, Endress+Hauser's new, state-of-the-art Customer Center is suited to greet visitors with a top-notch certified training facility with multiple classrooms and its largest yet PTU controlled by Rockwell Automation's PlantPAx system for real-world process simulation with over 120 measuring points.

  • The Rise of Aluminum in the Industrial Sector

    It is not just price that makes aluminum appealing when put alongside copper in the production of items like electrical wires and cables, though.

  • Maverick Acquires CQS Innovation Expanding Process Expertise in the Life Sciences Industry

    The acquisition expands Maverick's size and scale as a global organization with 19 office locations and 500+ engineering professionals. In addition, Chris Roerig, current president of CQS Innovation, will join Maverick as industry manager for life sciences.

  • ISA Offers Cybersecurity Certificate Program

    The program consists of passing a course on using the ANSI/ISA-62443 standards to secure industrial control systems. The course is available in the classroom or online. Students must also pass a written exam in the classroom or online.

  • Fieldbus Groups 'Unite'

    The combined power of both organizations will aim to protect the investments that end users in process automation have made in HART and Foundation fieldbus communication technologies.

  • Guess Who Just Turned 125 Years Old?

    ABB recently celebrated its 125th anniversary in Finland.

All news »

What are your comments?

Join the discussion today. Login Here.

Comments

No one has commented on this page yet.

RSS feed for comments on this page | RSS feed for all comments