User Guide
Table Of Contents
Intended Operation Environment
Isolated Network Deployment
4
20 | 26
A6V11979523_en_b
Protected Zone
Physically separated, private network.
MMS
Management station
Component requirements
MMS
● Is part of the Protected Zone.
● Has no connection to other networks or systems.
NK823x device
● Is part of the Protected Zone.
● Has no connection to other networks or systems.
● A direct connection is established between the Protected Zone and the
component in the protection zone.
Direct means that both devices and their cable connection are visible at the same
time and thus a potential manipulation might be recognizable.
Physical separation of the management level network from the field level networks
can further increase the security of the system.
Fig. 7: Stand-alone Local Access MMS with physically separated networks
Management level LAN ( Ethernet )
Client
Client Server
AlgoRex
CS11 STT11/20
DF8000
Sintony
SI410
FS20
NIC 2
NIC 1
Protected Zone
Field level LAN ( Ethernet )
NIC 3
Field level LAN ( Ethernet )