Siemens NK8000 MP4.40 Series Application & Planning Download | Manualshive

Page: 75 / 96

background image

NK8000 network planning

75

Building Technologies

049_DMS_DMS8000_Application_Specification_Planning_MP4.81_A6V10063710_a_en.doc

CPS Fire Safety

09.2016

5

NK8000

network

planning

NK8000 networks can be built as a dedicated safety- and security IP network, or can
be integrated into an existing customer network (shared network). The NK8000 Secu-
rity and IT rules apply in both cases.

5.1 NK8000

Security

To ensure the system security and prevent physical damages and attacks that may
compromise the system integrity and confidentiality, make sure to install NK823x units
according to the following criteria:

·

NK823x units must be updated to latest Kernel and firmware versions.

·

NK823x units must be must be installed in locked cabinets (for example, a
control panel housing or the dedicated NE8001 cabinet).

·

Cabinets must be installed in locked rooms with constant surveillance and

·

Restricted access to authorized personnel only.

·

Most of the communication protocols, used between the NK823x units and the
management station and between subsystems and the NK823x units, are
open and unprotected protocols (e.g. BACnet, Modbus TCP, IEC 60870-5-
104, etc.). Therefore, the networks where the NK823x units are connected to
must be protected from unauthorized data access, use, disclosure, disruption,
modification, and destruction. This concerns all networks that are somehow
vulnerable due to external connections (WAN, Internet), open technologies
(wireless networks), or any other risk of fraudulent access. To achieve the re-
quired level of security, the protective measures must include:

o

The use of firewalls on the Intranet to filter external traffic and select

the allowed ports
NOTE: The list of ports used by the management system can be
found in 5.4.2.

o

The use of Virtual Private Networks (VPN) or other equivalent solu-

tions to establish a secure (encrypted) tunnel between the NK823x
LAN and the management station across public or unprotected net-
works.

·

In the NK823x unit download, the secure (default) option must be selected. Do
not use the FTP modes.

·

The built in NK823x firewall and routing capabilities provide only a basic level
of protection for gateway purposes. For that reason the usage of NK823x as
firewall for protecting subsystems, management stations or customer net-
works is not recommended.
In installations with critical infrastructure and higher security requirements the
usage of up-to-date, professional and properly configured firewalls is highly
recommended.

«
...
73
74
75
76
77
...
»

Summary of Contents for NK8000 MP4.40 Series

Page 1: ...Building Technologies CPS Fire Safety DMS8000 MP4 81 Application Planning For MM8000 Management Station MK8000 OPC Server NK8000 Networks With WW8000 Composer ...

Page 2: ...be reproduced or transmitted in any form or by any means electronic or mechanical for any purpose without the express written permission of Siemens Switzerland Ltd All software described in this document is furnished under a license agreement and may be used or copied only in accordance with license terms For further information contact your nearest Siemens Switzerland Ltd representative Siemens S...

Page 3: ...et 21 2 2 4 Mobile devices connected via UMTS 22 2 3 NK8000 network configurations 23 2 3 1 DMS8000 Multiple host configuration CMSDL IP 23 2 3 2 DMS8000 multiple host configuration BACnet IP 23 2 3 3 Modbus Gateway for fire applications and network separation24 2 3 4 DMS8000 multiple or single host network redundancy with dual LAN 25 2 3 5 DMS8000 support of dial up connections 26 3 Automation le...

Page 4: ...tyle systems 71 4 3 Wide area extension systems 72 4 4 Interactions 73 5 NK8000 network planning 75 5 1 NK8000 Security 75 5 2 IT rules 76 5 2 1 Repeater rules 76 5 2 2 Cable lengths 77 5 3 Dedicated safety and security networks 78 5 3 1 Application example with commercial Ethernet components 78 5 3 2 Application example with Industrial Ethernet components 80 5 3 3 Application example with Open Tr...

Page 5: ...ons Suggestions for improve ment are welcome Brand or product names mentioned in this document may be names protected by copyright law or registered trademarks of other companies These are mentioned only for identification purposes and have no recommendatory character in regard to the product or manufacturer unless otherwise stated Security Disclaimer Products solutions and services from Siemens i...

Page 6: ...ire 3F Document Type All Image Type All Advanced search criteria Select Brochure No and enter the document num ber to search for e g A6V10062415 Alternatively select Title and enter the product name e g MM8000 2 Click Search to start In the resulting area on the right select the document type e g Contacts Data Sheet etc For more information such as Siemens news and announcements visit the STEP Web...

Page 7: ...agement Terminal phased out Siemens Building Technologies now in Siemens Infrastruc ture and Cities Sector A6V10063710_a_en 06 2011 12 th Application Planning edition for all Siemens DMS Net work and 3 rd party products MP4 40 Updates include New Bosch video subsystem support MM8000 3 rd party generic DVR support via OPC MM8000 Support for up to 15 clients MM8000 MK8000 NK823x support of FS20 FS72...

Page 8: ...t System DMS solutions MM8000 Management Station The MM8000 provides integrated management and handling decentralised system operation and centralised maintenance The MM8000 is designed to replace older management stations such as LMSmodular LMS6 and DMS7000 MM8000 also offers the following advantages Flexibility The system can be built and configured to fit different situations Scalability MM8000...

Page 9: ...where only one subsystem needs to be connected to a remote management system such as a bank application centralisation of security systems of branches The NK8235 allows connection of multiple IC BT and 3 rd party subsystems to DMS8000 Management Stations and is best suited for local systems campus size or wide area extension systems where more than one subsystem has to be connected or system exten...

Page 10: ...to other NK823xs See more about interactions in section 4 4 on page 73 The DMS8000 upstream devices MM8000 or MK8000 must be equipped with the NS8011 Network Driver for BACnet IP on Ethernet connectivity the NS8210 Net work Driver for TCP IP on Ethernet connectivity or with the NS8012 CDI Net Driver for serial connectivity 1 2 1 3 Extended connectivity and other capabilities for NK823x only Suppor...

Page 11: ... 81_A6V10063710_a_en doc CPS Fire Safety 09 2016 1 4 What s new The following is a list of modifications included in MP4 81 for new functions and soft ware improvements Modification index Section Modification Security Disclaimer inserted 5 1 New section NK8000 Security 5 4 2 List of NK823x port numbers updated ...

Page 12: ...0 Management Station MK8000 OPC DA UA Server configurations The following management configuration types are supported by MM8000 MK8000 Examples show the different site configuration options available These configurations can be for one or multiple stations or sites Note Management Station configurations can be freely combined with NK8000 net work configurations See section 2 2 2 1 1 Stand alone c...

Page 13: ...vices Each station is specialised for a single function i e MM8000 MK8000 client MM8000 MK8000 server or FEP Front end processor Software architecture can be distributed on different PCs for load distribution Optional fault tolerant redundancy solution with dual servers to prevent service interruption Optional manual server switch solution for project redundancy or multiple pro jects MM8000 The cl...

Page 14: ...the server See Fig 3 and Fig 4 Each client machine may contain any subset of the applications It is possible to have stations running only the basic modules for example those devoted to surveillance only and stations with a more complete set of tools such as the Plant and History browsers used by engineers or supervisors In addition web stations and mobile devices are also supported for local or r...

Page 15: ...PS Fire Safety 09 2016 Fig 4 MM8000 MK8000 SiPass small medium distributed configuration Note MM8000 MK8000 and SiPass servers may reside separately This is recom mended for large high connectivity configurations For technical details please contact customer support https intranet1 siemens com org bt en business support Pages csc fs aspx ...

Page 16: ...oad distribution Fig 5 MM8000 MK8000 with multiple FEPs for communication load distribution Fault tolerant hardware configuration For maximum reliability the server hardware can be doubled and managed with Marathon everRun FT software This ensures zero downtime In this solution the field connectivity is based on a LAN connection Fig 6 MM8000 MK8000 fault tolerant redundant configuration with dual ...

Page 17: ...the server fails the client can switch to another server configured for the same project thus ensuring minimum connectivity interruption Up to four servers can be configured Fig 7 Multiple server distributed configuration Note Clients can connect to only one server at a time Virtual server configuration MM8000 offers support for virtual machine solutions One or more MM8000 virtual clients servers ...

Page 18: ...n separate servers configuration MM8000 supports multiple projects residing on separate servers These servers are available to client stations via a manual server switch functionality This provides the ability to switch one or more clients from for example an intru sion to a fire network Up to four servers are configurable Fig 9 Multiple projects distributed on separate servers ...

Page 19: ...ions in the product documentation WARNING It is in the responsibility of the Regional Countries RC s to carefully check whether the use of the MM8000 Alarms app or externally developed app s for handling events from MM8000 is allowed by national or local safety standards or codes of practice If local law or codes of practice do not allow controlling events from mobile devices the DMS8000 Web Servi...

Page 20: ...cted via WLAN wireless network WLAN connections are mainly used in in house applications because they are limited in range In this type of application the MM8000 Server needs to be connected to a WLAN router Activating the WLAN encryption on the router protects the WLAN wireless net work against unauthorized use We recommend using the WPA encryption which provides the highest level of security The...

Page 21: ...ecommunication network to the internet Fig 11 DMS8000 Web Services Internet connection WARNING Note that that handling safety and security events from remote over the Internet might be risky and not be allowed by the company s security policy local law or code of practice Consider to configure the Web Services in view only mode and or setup a Virtual Private Network VPN connection between the rout...

Page 22: ...ed domain name To specify domain name user name and password you must register with a dynamic DNS provider The router must be able to support the dynamic DNS The dynamic DNS provider Domain name User name and Password fields must be configured in the router using the registration information from the dynamic DNS provider Fig 12 DMS8000 Web Services UMTS connection WARNING Note that that handling s...

Page 23: ...racteristics Communication layer equipped with NS8210 Network driver CMSDL IP proto col Up to four hosts Fig 13 NK8000 CMSDL IP multiple host configuration example 2 3 2 DMS8000 multiple host configuration BACnet IP Characteristics Communication layer equipped with NS8011 BACnet Network Driver See section 3 2 13 for subsystems supported Up to four DMS8000 hosts Preferred solution if system extensi...

Page 24: ...ed with NS8210 Network driver CMSDL IP proto col or NS8011 BACnet Network driver BACnet IP protocol for DMS8000 Up to four hosts any combination MM8000 MK8000 TCP IP Modbus client Simultaneous support of 3 rd party TCP IP Modbus and serial Modbus up to four total connections Limit two Modbus serial devices Modbus GW for Sinteso Cerberus PRO and STT20 panels routing and firewall functions across tw...

Page 25: ...ancy with dual LAN Characteristics Communication layer equipped with NS8210 Network driver CMSDL IP or CEI 79 5 protocol Up to four hosts limit two hosts for CEI Dual Ethernet connections for network redundancy If the primary NK823x Ethernet connection goes down the NK823x can com municate with the management station s via the secondary Ethernet connec tion Fig 16 NK823x redundant network configur...

Page 26: ...000 support of dial up connections Characteristics Communication layer equipped with NS8210 Network driver and modem s CEI 79 5 IP protocol NK82xx dial ups as primary no Ethernet connection or secondary in case network is down via PSTN Encryption supported Up to two CEI hosts NK823x only Note Dial ups not supported on 2nd host Fig 17 NK8000 dial up configuration example ...

Page 27: ...t NK8000 Direct LAN FCnet SAFEDLINK Network components NK82xx MK7022 GW 21 GW20 Control units Note For control unit versions see MM8000 MP4 81 Release Notes A6V10062509 To learn how to obtain this document see the Documentation resource information section on page 5 Fire detection systems CS11 AlgoRex FC700A CS1115 FC330A CZ10 XLS FS20 Sinteso FS720 Cerberus PRO STT11 Système de Télécommande et Té...

Page 28: ...ated Access Control System CerPass CC30 connected via SiPass Building automation DESIGO PX General automation and I O systems SIMATIC S7 MF7033 MM7033 digital PLC unit DF8000 digital I O systems Remote notification ESPA Paging System Analog modem for dial up connections 3 rd party systems A number of 3rd party systems are supported via NK82xx or MM8000 drivers For details see section 3 4 Section 3...

Page 29: ...5 direct configuration example System architecture This configuration allows for integration of CS11 AlgoRex or FC700A fire panels The CK1142 43 or FG700A provides the liaison to MM8000 MK8000 Communication connection The upstream side of the gateway CK1142 43 or FG700A is connected to the DMS via serial line The downstream side of the gateway is connected to one or more CS11 AlgoRex or FC700A fir...

Page 30: ...e Name Version Gateway for CS11 CK1142 43 Gateway for FC700A FG700A Additional components required for the various management station types Type Additional components Name Version Foreign station OPC client head end Any OPC DA UA compliant client OPC DA2 0x OPC UA 1 02 OPC Server MK8000 MP4 81 ISO1745 Driver NS8010 MM8000 ISO1745 Driver NS8010 MP4 81 Limits and restrictions Type Version Restrictio...

Page 31: ...tion allows for integration of a number of Cerloop proprietary Class A loop connectable control panels The MK7022 provides the liaison to MM8000 MK8000 Communication connection The upstream side of the MK7022 gateway is connected to the DMS via serial line The downstream side of the MK7022 is connected via Cerloop to different fire secu rity control units A CS11 AlgoRex cluster can be connected to...

Page 32: ...eway for Cerloop MK7022 Gateway for CS11 CK1142 43 Gateway for STT11 SK11 Additional components required for the various management station types Type Additional components Name Version Foreign station OPC client head end Any OPC DA UA compliant client OPC DA2 0x OPC UA 1 02 OPC Server MK8000 MP4 81 ISO1745 Driver NS8010 MM8000 ISO1745 Driver NS8010 MP4 81 Limits and restrictions Type Version Rest...

Page 33: ...ion Via serial line RS 232 Subsystems that can be connected in this way Type Name Supported by MM8000 MP4 81 MK8000 MP4 81 Fire panel CS1115 FC330A X X X X Additional components required for the various management station types Type Additional components Name Version Foreign station OPC client head end Any OPC DA UA compliant client OPC DA2 0x OPC UA 1 02 OPC Server MK8000 MP4 81 Fire CNDL Driver ...

Page 34: ... Fig 21 Serial configuration via RS 232 example Fig 22 Serial configuration via LAN tunnelling example System architecture This configuration allows for integration of SI410 420 intrusion panels Communication connection The connection can be via Serial line RS 232 LAN where the SI410 420 is equipped with a SMNxx e g SMN42 serial LAN adapter External adapter e g LANTRONIX UDS1100 can also be used ...

Page 35: ...ation types Type Additional components Name Version Foreign station OPC client head end Any OPC DA UA compliant client OPC DA2 0x OPC UA 1 02 OPC Server MK8000 MP4 81 SI410 420 driver NS8014 LAN RS 232 software for LAN tunnelling LANTRONIX redirector or equivalent See LANTRONIX documentation MM8000 SI410 420 driver NS8014 MP4 81 LAN RS 232 software for LAN tunnelling LANTRONIX redirector or equiva...

Page 36: ...trusion panels are connected to the DMS via LAN Subsystems that can be connected in this way Type Name Supported by MM8000 MP4 81 MK8000 MP4 81 Intrusion panel SPC 4000 5000 6000 X X Additional components required for the various management station types Type Additional components Name Version Foreign station OPC client head end Any OPC DA UA compliant client OPC DA2 0x OPC UA 1 02 OPC Server MK80...

Page 37: ...een devices and the SiPass server The SiPass server in turn manages communication to from the DMS locally see Fig 24 or via LAN Note 1 The SiPass server can be separate from the MM8000 MK8000 server Note 2 Check for possible SiPass license requirements Subsystems that can be connected in this way Type Name Version Supported by MM8000 MP4 81 MK8000 MP4 81 Access control SiPass Integrated X X 3rd pa...

Page 38: ...ation types Type Additional components Name Version Foreign station OPC client head end Any OPC DA UA compliant client OPC DA2 0x OPC UA 1 02 OPC Server MK8000 MP4 81 MM8000 MK8000 Access Control software SiPass Integrated SiPass Driver NS8018 Limits and restrictions Type Version Restrictions MM8000 MK8000 MP4 81 The SiPass driver can reside on a Server station only no FEPs Max 4 SiPass servers pe...

Page 39: ...ons 39 Building Technologies 049_DMS_DMS8000_Application_Specification_Planning_MP4 81_A6V10063710_a_en doc CPS Fire Safety 09 2016 3 2 7 BACnet IP LAN configuration Fig 25 Direct BACnet IP LAN configuration for subsystems example ...

Page 40: ...RO STT20 fire panels and DESIGO PX building automation controllers Note STT20 is only supported in FCnet SAFEDLINK topology Communication connection Both the FS20 Sinteso FS720 Cerberus PRO and DESIGO PX subsystems can be connected to the DMS via LAN Additionally several FCxx FTxx can connect to the DMS via FCnet SAFEDLINK in single or multiple SAFEDLINK loops where up to two stations Global Acces...

Page 41: ...mits and restrictions Type Version Restrictions MM8000 MP4 81 Up to 64 BACnet devices FCxx FTxx and or DESIGO PX per Server FEP stations can be connected Note Panels from an FS20 system or project cannot be split to communicate to 2 separate FEPs 2 BACnet clients FS20 Sinteso FS720 Cerberus PRO Systems Limit 16 FCxx FTxx per SAFEDLINK loop Limit 64 FCxx FTxx on multiple SAFEDLINK loops Max 2 GAP s...

Page 42: ... Communication connection The CCTV devices are connected to the DMS via LAN Subsystems that can be connected in this way Type Name Supported by MM8000 MP4 81 MK8000 MP4 81 CCTV SISTORE AX X X SISTORE MX X X Vectis HX iX X X SISTORE CX X X SISTORE SX X X TELSCAN video web server X X IP cameras fixed X X 3rd party systems è See Appendix A and MM8000 ICC Add on configuration documentation To learn ho...

Page 43: ...0 Appropriate software according to specific device SISTORE TELSCAN 3rd party systems MP4 81 IP camera devices CCIS1337 LP CFVA IP CVVA IP See section 3 4 on page 69 and MM8000 ICC Add on Configuration Guides for supported 3 rd party subsystems To learn how to obtain this document see the Documentation resource information section on page 5 Limits and restrictions Type Version Restrictions MM8000 ...

Page 44: ... Communication connection The paging system is connected to the DMS via RS 232 Subsystems that can be connected in this way Type Name Version Supported by MM8000 MP4 81 MK8000 MP4 81 Paging System ESPA compliant paging devices X Additional components required for the various management station types Type Additional components Name Version MM8000 Paging dispatching services Limits and restrictions ...

Page 45: ...ol No software development necessary but lim ited functionality and requires more engineering è For details see the OPC Connectivity Guide A6V10065253 Specific OPC subsystem tool Requires development of a Composer subsys tem tool has been done for SIMATIC S7 and RCO R Card M5 Communication connection For the communication to from the 3rd party subsystem s MM8000 connects via Ethernet to the OPC se...

Page 46: ...doc CPS Fire Safety 09 2016 Additional components required for the various management station types Type Additional components Name Version MM8000 3rd party OPC server Limits and restrictions Type Version Restrictions MM8000 MP4 81 8 OPC connections 10 000 OPC tags in total Please contact customer sup port for more connections tags ...

Page 47: ...t allows for CS6 Guarto integration via LON bus One of the NK82xx Serial Ports provides the liaison for a local management station MM8000 MK8000 Communication connection The NK82xx is connected on upstream side via RS 232 proprietary CMSDL protocol to the management system Note A temporary Ethernet network link is required for configuration download On the downstream side the NK82xx is connected v...

Page 48: ...sion panel CS4 X X Intrusion panel CZ12 X X Intrusion panel SI410 420 X X Intrusion panel CS6 Guarto X X Gas panel CC60 X X Digital PLC unit MF MM7033 X X Système de Té lécommande et Télésignalisation STT11 STT20 STT2410 X X X X Video Crossbar SIMATRIX X X Video Crossbar SIMATRIX NEO X X Digital Input Output DF8000 X X 3rd party systems èSee section 3 4 on page 69 for supported 3rd party subsystem...

Page 49: ...Type Additional components Name Version Foreign station OPC client head end Any OPC DA UA compliant client OPC DA2 0x OPC UA 1 02 OPC Server MK8000 MP4 81 CDI Net Driver NS8012 MM8000 CDI Net Driver NS8012 MP4 81 Limits and restrictions Type Version Restrictions MM8000 MK8000 MP4 81 Upstream serial connectivity is limited to one host And Host must be equipped with NS8012 CDI Net Driver NS8012 CDI ...

Page 50: ...8000 Additionally the NK82xx provides serial connectivity to a local host MM8000 MK8000 using an RS 232 line via CMSDL protocol Communication connection The NK82xx is connected on the upstream side via Ethernet to the MM8000 and or the MK8000 and on the downstream side via serial lines and or via LON bus to a number of different fire security control units Dial up lines can optionally be used as a...

Page 51: ...X X Intrusion panel CS440 X X Intrusion panel CS4 X X Intrusion panel CZ12 X X Intrusion panel SI410 420 X X Intrusion panel CS6 Guarto X X Gas panel CC60 X X Digital PLC unit MF MM7033 X X Système de Té lécommande et Télésignalisation STT11 STT20 STT2410 X X X X Video Crossbar SIMATRIX X X Video Crossbar SIMATRIX NEO X X Input Output DF8000 X X 3rd party systems Cerloop connectivity only Network ...

Page 52: ...estrictions Type Version Restrictions MM8000 MK8000 MP4 81 NK82xx supports logical connections to a max of 4 hosts MM8000 and or MK8000 via CMSDL IP proto col Up to 2 hosts can be supported using the CEI 79 5 encrypted protocol Up to 500 NK82xx can be connected to an MM8000 MK8000 however please contact customer support for configurations of over 100 Upstream serial connectivity is limited to one ...

Page 53: ...d as a BACnet Foreign Device for FS20 FS720 NK823x has an integrated firewall and router supporting the dynamic routing protocol Open Shortest Path First OSPF The built in NK823x Web Server can be used for monitoring and diagnostic purposes FS20 FS720 can be connected via NK823x thus enabling non EN 54 interactions with other subsystems or directly to the management station level In both cases BAC...

Page 54: ... Intrusion panel CS6 Guarto X X Input Output DF8000 X X Digital PLC unit MF MM7033 X X 3rd party systems Philips Burle Allegiant LTC 8x00 switchers Modbus CDDL CDSF X X X X Network devices required Type Name Version NK8232 NK8235 Ethernet Port MP4 81 Gateway for Cerloop MK7022 Gateway for CS11 CK1142 43 Gateway for FC700A FG700A Additional components required for the various management station typ...

Page 55: ... STT20 supported by NK823x only Limit 10 000 detectors in an FS20 FS720 system Limit Max 16 FS20 FS720 units or 12 FS20 FS720 and 10 STT20 units Only one CS6 Guarto intrusion panel per NK823x is supported CS6 connected via USB and Echelon U10 USB Network Interface TP FT 10 Channel to NK823x NK8000 requires static IP addresses i e DHCP is not supported Default UDP Port 47808 hex BAC0 for BACnet con...

Page 56: ... STT20 is connected via Ethernet and BACnet IP protocol to the NK823x On the upstream side the NK823x is connected to MM8000 and or MK8000 via Ethernet and BACnet IP or CMSDL IP protocol The 3rd party Modbus device is con nected either via Ethernet and TCP IP Modbus protocol or via RS 232 RS 485 and Modbus RTU protocol to the NK823x In addition NK823x can be configured as a BACnet Foreign Device o...

Page 57: ...000 MP4 81 MK8000 MP4 81 Fire panel FS20 Sinteso X X Fire panel FS720 Cerberus PRO X X Fire panel STT20 X X Network devices required Type Name Version NK8232 NK8235 Ethernet Port MP4 81 NK8237 Modbus Gateway MP4 81 Additional components required for the various management station types Type Additional components Name Version MM8000 MK8000 BACnet Driver NS8011 MP4 81 Network Driver NS8210 See next ...

Page 58: ...FS720 and 5 STT20 units l 3 Modbus and 1 DMS8000 hosts or 4 Modbus hosts Limit 2 500 detectors in an FS20 FS720 system Limit Max 4 FS20 FS720 units or 3 FS20 FS720 and 2 STT20 units Technical Notes Limit in an FCnet Ethernet Max 4 units for any combination of hosts DMS8000 host memory impact is same for one or more DMS8000 hosts Multiple NK823x units can be linked to a Modbus Master with the follo...

Page 59: ...se see product datasheets for details NK8232 NK8232 2 Base module 2 Ethernet lines for remote station 2 serial lines for subsystems local station modem Max 1 subsystem NK8235 NK8235 2 Ser IF Base module 2 Ethernet lines for remote station 2 serial lines for subsystems local station modem NK8235 4 Ser IF Base module 2 port serial extension 2 Ethernet lines for remote station 4 serial lines for subs...

Page 60: ...tic housing in a control unit NZ8201 NK82xx mounting kit for CS11 Card holders and cable set for installing NK82xx in CS11 or CS440 DF8020 8 output non supervised relay module connected via I 2 C bus for controlling digital outputs NK823x Max 4 modules For more connectivity it is necessary to use a DF8003 CPU on one of the serial connections DF8040 8 input non supervised module connected via I 2 C...

Page 61: ...x easy to install on DIN rails Alternatively the NK82xx can be installed without the plastic box using the specific mounting kit for CS11 AlgoRex CS440 Fig 35 NK82xx mounting option for CS11 AlgoRex CS440 NE8000 housing solutions Stand alone installations of NK82xx are possible with the compact and convenient NE8001 housing solution The NE8001 cabinet includes a DIN rail power supply and DF8090 Po...

Page 62: ...0A CS1115 FC330A NK823x only SYGMASYS D100 STT11 STT20 STT2410 CZ10 XLS Intrusion detection systems CS4 SI410 420 CS440 CZ12 CS6 Guarto Gas detection systems CC60 Video systems SIMATRIX video crossbar General I O systems DF8000 digital I O systems via RS232 or RS485 interface and RS232 RS485 interface converter e g ICP DAS I 7520 3rd party systems A number of 3 rd party systems are supported eithe...

Page 63: ...ng control units are supported Siemens FS20 Sinteso and FS720 Cerberus PRO STT20 Système de Télécommande et Télésignalisation Fig 37 Example of a subsystem connected via BACnet Technical Notes FS20 FS720 STT20 connected via NK823x can support interactions and network separation FS20 FS720 STT20 in FCnet SAFEDLINK topology NK8237 does not support upstream connections to DMS8000 hosts Optional routi...

Page 64: ...nal network e g Modbus client via NK823x Routing between Ethernet 1 and Ethernet 2 enabled Edge firewall advanced Traffic from external network can be filtered by source destination IP addresses configurable Custom ports configurable Relay output diagnostics ETH1 ETH2 cable disconnected NK823x failures low memory logging failed and SW error Router The routing between ETH1 and ETH2 can be enabled d...

Page 65: ...terface The following control units are supported Siemens DF8000 digital I O systems DF8003 DF8020 DF8040 DF8045 DF8046 modules Modbus slave devices Fig 39 Example of subsystems connected via RS485 interface Technical Notes NK823x The serial interfaces COM1 and COM2 can be configured either as RS232 or RS485 interface NK8235 only The RS485 serial interface can connect to up to 32 Modbus slave devi...

Page 66: ...d via USB LON interface The following control units are supported Siemens CS6 Guarto intrusion detection systems only one Fig 40 Example of subsystems connected to NK823x via USB LON interface Technical Notes Guarto CS6 Security System can be integrated via NK823x Ethernet Ports with an Echelon U10 USB Network Interface TP FT 10 Note Only one CS6 control unit can be supported per NK823x ...

Page 67: ... following control units are supported in a Cerloop configuration Fire detection systems CS11 AlgoRex CZ10 STT11 Système de Télécommande et Télésignalisation STT20 STT2410 Intrusion detection systems CS4 CS440 CZ12 Gas detection systems CC60 General I O systems MF7033 MM7033 digital PLC unit The Cerloop network is connected via the MK7022 to the NK82xx Fig 41 Example of Cerloop network connected v...

Page 68: ...3 3 6 Power supply supervision and digital I O modules connected via I2 C bus The following Siemens DF80xx modules are supported DF8090 Power supply supervision module max 1 module DF8020 8 output relays module NK823x Max 4 modules DF8040 8 input module NK823x Max 4 modules DF8045 4 balanced input module NK823x Max 4 modules DF8046 4 balanced input module NK823x Max 4 modules Note for NK823x Limit...

Page 69: ...dbus based systems CDDL CDSF based systems Systems that provide an OPC server interface Fire detection systems Autronica BSxxx LIST SCU 2000 Intrusion detection systems MAXSYS PC6010 Gas detection systems CP100 Video systems Philips Burle Allegiant LTC 8x00 video switchers available in standard setup Geutebrück MultiScope II Plus and MultiScope III DVRs NICE DVRs Alto Pro NVSat NVR9000 Bosch Divar...

Page 70: ...m Fig 42 Example of a local system The management station is connected via TCP IP LAN to the NK8235 for the centrali sation of DF8000 digital I O System RS485 party lines for multiple units directly con nected or via IC 2 converter CCTV SIMATRIX crossbar or Philips Burle Cerloop network via MK7022 CS11 AlgoRex CZ10 STT11 STT20 STT2410 Système de Télécommande et Télésignalisation CC60 Gas CS440 CS4...

Page 71: ...ze systems are Universities Airports Amusement parks e g Disneyland Industries Pharmaceutical companies Hospitals Automobile manufacturing plants The following figure shows a typical campus site configuration The subsystems of each building are connected to an NK82xx Ethernet Port The NK82xx are connected via the LAN or WAN to the remote management station Fig 43 Example of NK82xx connection to di...

Page 72: ...ing figure shows a typical geographical network configuration The head quarters is equipped with several subsystems connected to an NK8235 Ethernet Port The branches where a single fire or security subsystem needs to be centralised are equipped with NK8232 Ethernet Ports for a single subsystem The NK82xx are con nected via the LAN or WAN to the remote management station s Additionally dial ups are...

Page 73: ...s Incoming messages can trigger one or more command messages to other subsystems Note Incoming messages can be combined with the logical operators AND OR XOR and NOT The configuration is done via an easy to use interactions tool and then downloaded to the NK82xx Fig 45 Local interactions between subsystems connected to NK8235 Note NK823x also supports interactions between locally connected subsys ...

Page 74: ...Guarto DF8000 NK8000 DF80xx digital I O modules systems MK7022 Cerloop interface Philips Burle video switcher Note NK8000 is not certified as part of an EN54 2 fire detection system There fore NK8000 interactions should only be used in applications where they are not in conflict with EN54 standards or national guidelines or regulations e g not for common control of remote transmission devices The ...

Page 75: ...0 5 104 etc Therefore the networks where the NK823x units are connected to must be protected from unauthorized data access use disclosure disruption modification and destruction This concerns all networks that are somehow vulnerable due to external connections WAN Internet open technologies wireless networks or any other risk of fraudulent access To achieve the re quired level of security the prot...

Page 76: ...e maximum length for an Ethernet segment for Ethernet 10BaseT and 100BaseTX is 100m 5 2 1 Repeater rules It is possible to extend the Ethernet length using repeaters hubs However you can not use infinite repeaters to extend the cable Note The transfer speed determines the number of repeaters you can install 10Mbps network For a 10Mbps network the 5 4 3 repeater rule is valid This rule means that y...

Page 77: ...gth with the 5 4 3 re peater rule This is due to the faster speed The maximum number of repeaters in serial for 100Mbps Ethernet is 2 5 2 2 Cable lengths Optimally you should use Cat 6 twisted pair cable Note the maximum cable length is 100 meters installed as follows 90 meters fixed installed cable Horizontal cabling 10 meters patch cables both sides together The cable length for fibre optic depe...

Page 78: ... in your own housings You can profit from power supplies with battery backup of the control units There is no risk that other bandwidth intensive applications will reduce the per formance of the network Disadvantages of dedicated safety and security networks are You need trained staff for commissioning and maintenance of the network You may need to keep some additional spare parts in stock Higher ...

Page 79: ...via Router 100BaseT and WAN to the centre When planning a dedicated safety and security network with commercial Ethernet components consider the following aspects Be aware that the maximum length of a segment is 100m Use Category 5 TP cable or better Category 6 recommended Install RJ45 outlets close to the DMS PCs and Ethernet Ports Install the network components in a safe place where only our ser...

Page 80: ...ndant ring structures The managed Industrial Ethernet switches of the SCALANCE product line are optimized for installing Industrial Ethernet networks within a line star and ring topology Redundant networks increase the overall security and reduce installation down times It is vital for safety and security applications that network reconfiguration time is as fast as possible after a network fault T...

Page 81: ... to the redundant network The total size of a network with Industrial Ethernet can be up to 150km above 150 km take into account signal propagation time The maximum length for the fibre optic cable is 3 km with multimode fibre optic cable 26 km with single mode fibre optic cable You can find more information about Industrial Ethernet at https www automation siemens com mcms automation en industria...

Page 82: ...s in special environments via its interface cards Transport It carries different types of information such as voice data LAN and video completely transparently throughout the network and does so with high avail ability Network It is based on fibre optic technology in a future proof network infrastructure spanning any distance An OTN network is built up with nodes that are interconnected by a dual ...

Page 83: ...network together with CCTV access control and telephony applications not shown in Fig 52 You can find more information about OTN at www otnsystems com 5 4 Shared network It is possible to integrate FS NK8000 and management station products into a cus tomer s network however you need to be aware of satisfy the following requirements Only Ethernet is supported The DMS PC in general supports 10BaseT ...

Page 84: ...d 100BaseT half duplex and full duplex mode Only Ethernet RJ 45 copper cable Cat 5 5E or 6 is supported If the network is down it is not possible to receive any information via the network The responsible person for the network is the customer and not Siemens FS FIS SES The customer should sign a contract that Siemens FS SES disclaims any liability for the customer s existing network Your customer...

Page 85: ... in the network For detailed information on secure configuration downloads and downloading NK823x see the NK8000 Release Notes A6V10062453 and the NK8000 ICC A6V10062437 Note More TCP IP ports may be needed for MM8000 MK8000 For details see the MM8000 Sales Guide A6V10062427 To learn how to obtain this document see the Documentation resource information section on p 5 5 4 3 Network bandwidth Bandw...

Page 86: ...5 3 Modems Transceiver Media Max Nodes per Segment Topol ogy Max Speed Connector Type Max Distance without spe cial HW Remarks URL Tele phone Line cat 3 point to point PSTN 56kbps analog 64 kbps ISDN basic rate Inter face World wide over the PSTN public switched tele phone network www westermo se www blackbox com www zyxel com Wireless GSM World wide over the GSM Global System for Mobile communica...

Page 87: ... in serial 7 Switches in serial 100BaseF 2 wire fibre 50 or 62 5 mm 1024 per the whole network Star 100 Mbps ST SC or various connector 412 Meter Half duplex 2000 Meter Full duplex 1000BaseT 8 wire Cat 5 100 W imped ance Star 1000 Mbps RJ 45 100 Meter 1000BaseC X 8 wire Cat 5 150 W imped ance Star 1000 Mbps RJ 45 25 Meter 1000BaseS X 2 wire fibre 50 or 62 5 mm Star 1000 Mbps ST SC or various conne...

Page 88: ...lines Point to point Point to point 128 kbps 5 4 km Similar to the ISDN BRI service but data only no voice on the same line RADSL 2 wire telephone line Point to point Point to point Down stream 1 544 to 6 1 Mbps Upstream 16 to 640 kbps Depending on the transfer rate up to 18 km Not standard ised SDSL 2 wire twisted pair Point to point Point to point 1 544 Mbps USA and Canada 2 048 Mbps Europe 3 6 ...

Page 89: ... MM MK MM MK SPC5000 6000 Intrunet MM MK CS440 MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK CZ12 CS4 MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK CS6 Guarto via LON interface MM MK MM MK MM MK MM MK MM MK MM MK SI410 420 Plus Intrunet MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK MF7033 MM7033 MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK MM MK M...

Page 90: ...Licenses 90 Building Technologies 049_DMS_DMS8000_Application_Specification_Planning_MP4 81_A6V10063710_ a_en doc CPS Fire Safety 09 2016 ...

Page 91: ...are in the specification phase Customer profile System configuration Migration status Is the project a new system Yes No If no are there parts to be migrated to the new system Yes No Is this a replacement of an existing system Yes No If yes from which manufacturer Do you have existing IC BT subsystems to be migrated Yes No If yes what type of subsystems 3rd party integration Is it planned to integ...

Page 92: ...specification distance limits Yes No Are leased lines PSTN ISDN lines to be used Yes No Network connections Management station connectivity How many management stations are foreseen Is a management level network foreseen interconnection of different man agement stations only Yes No If yes what type of management level network Ethernet Token Ring FDDI ATM etc Management station to gateway connectiv...

Page 93: ...ary ports open TCP Port number 3001 NK82xx TCP Port 3001 3004 Multiple host configurations TCP Port 4000 NK82xx TCP Port 20 500 Secure download TCP Port 20 Port 21 FTP TCP Port 22 SSH Secure Shell TCP Port 80 HTTP for MM8000 Web Server Web Services TCP Port 443 HTTPS for MM8000 Web Server Web Services TCP Port 502 Modbus UDP Port 53 DNS Service Traceroute from NK823x UDP Port 161 SNMP UDP Port 478...

Page 94: ...Application_Specification_Planning_MP4 81_A6V10063710_a_en doc CPS Fire Safety 09 2016 Which components have to be attached to the UPS hubs routers Is a redundant backup line for the network planned Yes No If yes which type of dial up ISDN PSTN and GSM ...

Page 95: ......

Page 96: ...and Ltd Building Technologies Division International Headquarters Gubelstrasse 22 CH 6301 Zug Tel 41 41 724 24 24 www siemens com buildingtechnologies Document no A6V10063710_a_en DMS8000 Sales Material Edition 09 2016 Section 4 ...

Reviews:

No comments

Related manuals for NK8000 MP4.40 Series

Brand: IFM Electronic Pages: 6

Brand: Jabra Pages: 2

Brand: Jabra Pages: 2

Brand: Jabra Pages: 4

Brand: Jabra Pages: 2

Brand: Lantronix Pages: 7

Brand: Pace Pages: 15

Brand: VSmart Pages: 9

Brand: UCONNECT INTERNATIONAL Pages: 8

Brand: StarTech.com Pages: 10

Brand: Avaya Pages: 2

Brand: ooma Pages: 10

Brand: Lenze Pages: 8

Brand: Silvercrest Pages: 13

Brand: Protectowire Pages: 2

CompactFlash CA1040

Brand: Abocom Pages: 1

Brand: Sharp Pages: 2

Brand: Sharp Pages: 13

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands