User Manual

ManualsBrandsSiemens ManualsBuilding automationDesigo CC MP 5.0 BACnet Server, BACnet Protocol Implementation Conformance Statement (PICS), Basic Documentation

Network Security Controls

Siemens

Application Note

Smart Infrastructure

Remote Notification

Outbound Connections (ports used by the host to connect to remote notification

systems)

Hosts

Component / Process

Port

Port Configura-

tion

Comment

Protocol

Main

Server

ESPA driver

WCCOAGmsCoHoMngr.exe

variable

RENO SnapIn

(Pager)

Communication with ESPA Pager modem

ESPA 4.4.4

Main

Server

GSM driver

WCCOActrl.exe

variable

RENO SnapIn

(SMS)

Communication with GSM modem

GSM

Main

Server

Mail

WCCOActrl.exe

TCP: 25,

110, 143

RENO SnapIn

(Mail)

Communication with mail servers. It can be

unsecure or secured with SSL or TLS proto-

cols.

SMTP, POP3,

IMAP (secured

with SSL or TLS)

Main

Server

TAP driver

Sie-

mens.Gms.RENO.TAPDevMgr.exe

variable

RENO SnapIn

(Pager)

Communication with TAP Pager modem

TAP

1) File located in C:\Siemens\WinCC_OA\3.13\bin\

2) File located in [Installation Directory]\GMSMainProject\bin\

3.1.4 Least Functionality Implementation

Ensure that no ports apart from those specified in the firewall rules are open. Also,

make sure that no services other than those strictly required for full system

functionality are running during normal system operation.

3.2 Intended Operational Environments

3.2.1 All-In-One (One-Seat) System

Intended Use Case

This is the configuration choice in all cases where only one client is required and

system size is limited. Management System Server, database service and one

installed client are deployed on the same hardware platform, which can be physical

or virtual. The field networks are connected directly to the Management System

Server.

Figure 4: One Seat System.