Configuring data transfer using IEC 60870-5-104 protocol vai the configuration file
3 August 2023
ID 165937
To configure data transfer using IEC 60870-5-104 protocol via Kaspersky Security Gateway configuration file:
- Use any available text editor to open the configuration file C:\ProgramData\Kaspersky Lab\Security Gateway\Settings\ProtocolIECSettings.xml.
- Specify the common settings of the Kaspersky Security Gateway connection to the SCADA system:
- Device address. An auxiliary address assigned to the computer in the SCADA system. Range of possible values: 0–65535.
- Device port. A port number for establishing a connection to the SCADA system. Range of possible values: 0–65535.
- TCP connection timeout. The value is specified in seconds. Range of possible values: 1–255.
- Message send timeout. The value is specified in seconds. Range of possible values: 1–255.
- Message confirmation timeout. The value is specified in seconds. Range of possible values: 1–255.
- Test connection timeout. The value is specified in seconds. Range of possible values: 1–255.
- Maximum unconfirmed sent messages allowed. Range of possible values: 1–32767.
- Maximum unconfirmed received messages allowed. Range of possible values: 1–32767.
- Specify the details of the monitored computers. To do so, in the <MonitoredHosts/> section, specify Name and Address pairs using <MonitoredHosts Name=“” Address=“”/> tags, separated by a semi-colon (“;”):
- Name. Name of the computer with Kaspersky Industrial CyberSecurity for Nodes installed, whose protection status is sent to the SCADA system by Kaspersky Security Gateway.
- IP address. IP address of the computer with Kaspersky Industrial CyberSecurity for Nodes installed, whose protection status is sent to the SCADA system by Kaspersky Security Gateway.
- Save the configuration file.
- Restart Kaspersky Security Gateway service to apply the new settings.
A sample configuration file for the IEC 60870-5-104 protocol is provided below:
Example:
<?xml version=“1.0” encoding=“utf-8”?>
<KSGTW-Settings>
<DataTransmissionOptions>
<SlaveAddress>1</SlaveAddress>
<SlavePort>2404</SlavePort>
<TcpConnectionTimeoutSeconds>30</TcpConnectionTimeoutSeconds>
<MessageSendTimeoutSeconds>15</MessageSendTimeoutSeconds>
<MessageConfirmationTimeoutSeconds>10</MessageConfirmationTimeoutSeconds>
<ConnectionTestTimeoutSeconds>20</ConnectionTestTimeoutSeconds>
<MaxUnconfirmedMessagesAllowSend>12</MaxUnconfirmedMessagesAllowSend>
<MaxUnconfirmedMessagesAllowRecieve>8</MaxUnconfirmedMessagesAllowRecieve>
<EnableDataTransmission>yes</EnableDataTransmission>
<SpontaneousTransmission>yes</SpontaneousTransmission>
</DataTransmissionOptions>
<MonitoredHosts/>
<MonitoredDevices/>
</KSGTW-Settings>