manualshive.com logo in svg

Theben 9070771, Product Manual

Theben 9070771 Product Manual, available for free download at manualshive.com, provides comprehensive instructions to easily operate and maximize the potential of your device. This manual offers detailed step-by-step guidance, enabling you to effortlessly navigate through the features and functionalities of the Theben 9070771. Unlock its full potential with our user-friendly manual.

Share
Download
background image

IPsecure Interface KNX 

General 

 
 

1.2

 

Cyber security (network security) 

The industry is increasingly faced with cyber security risks. To increase the stability, security and robustness of its 

solutions, Theben has introduced official robustness tests for Internet security as part of the product development 
process.  

In addition, the information below includes guidelines and mechanisms that you can use to improve the security of 
KNX systems. 

 
 

1.3

 

Preventing access to the different media  

The basis for any protection concept is the careful shielding of the system against unauthorized access. Only 

authorized persons (installers, janitors and users) should have physical access to a KNX system.  
The critical points of every KNX medium must be protected as well as possible during planning and installation.  

In general, applications and devices should be permanently installed to prevent their easy removal and in this way 

prevent access to the KNX system for unauthorized persons. Subdistributions with KNX devices should be closed, 
or in rooms to which only authorized persons have access. 

 
 

1.4

 

Twisted pair cabling 

 

The ends of KNX twisted pair cables should not be visible or protrude from the wall either inside or outside 
the building. 

 

If available, use the anti-theft devices on the application modules. 

 

Bus cables outdoors represent an elevated risk. Ensure that physical access to KNX twisted pair cables is 
especially difficult here. 

 

For extra security, devices installed in areas with limited protection (outdoor areas, underground parking lots, 

restrooms, etc.) can be designed as a separate line. Enabling the filter tables in the Line Couplers (KNX only) 
prevents attackers from gaining access to the whole system. 

 

 

1.5

 

IP cabling inside the building  

For building automation, use a separate LAN or WiFi network with its own hardware (routers, switches, etc.).  

Regardless of the KNX system, apply the usual security mechanisms for IP networks. These are examples:  

 

MAC filter  

 

Encryption of wireless networks  

 

Usage of strong passwords and protection of these against access by unauthorized persons 

Note 

The device cannot be reached during IP, TCP or UDP flooding (access from the Internet). To prevent this 
reaction, set a data rate limit at network level.  
Please discuss the topic with your network administrator. 

 

 

Summary of Contents for 9070771

Page 1: ...IPsecure Interface KNX 9070771 Product Manual ...

Page 2: ...on drawing 14 2 4 Mounting and installation 15 2 4 1 Unloading the device and resetting to factory settings 16 2 5 Description of inputs and outputs 18 2 6 Operating controls 19 2 7 Display elements 19 3 Commissioning 21 3 1 Overview 21 3 2 Parameters 22 3 3 Communication objects 24 3 4 Use of the integrated tunneling servers 24 3 4 1 Tunneling server settings 25 3 5 KNX Secure 26 4 Planning and a...

Page 3: ...ems can access the KNX bus via the IPsecure Interface KNX The device supports the KNX Secure protocol KNXnet IP Security 1 1 Using the product manual This manual provides detailed technical information on the function installation and programming of the Theben KNX device The application is explained using examples This manual is divided into the following chapters Chapter 1 General Chapter 2 Devic...

Page 4: ... safety instructions are used as soon as there is danger of a malfunction without risk of damage or injury Attention These safety instructions are used as soon as there is danger of a malfunction without risk of damage or injury Danger These safety instructions are used if there is a danger to life and limb with inappropriate use Danger These safety instructions are used if there is an extreme dan...

Page 5: ...ch only authorized persons have access 1 4 Twisted pair cabling The ends of KNX twisted pair cables should not be visible or protrude from the wall either inside or outside the building If available use the anti theft devices on the application modules Bus cables outdoors represent an elevated risk Ensure that physical access to KNX twisted pair cables is especially difficult here For extra securi...

Page 6: ...he Internet Systems can be accessed via the Internet in the following ways Access to KNX installations via VPN connections However this requires a router with VPN server functionality Use of manufacturer specific solutions or visualizations e g access via https 1 7 KNXnet IP Security The device should always be operated in KNX Secure mode This ensures security for the tunneling servers and for com...

Page 7: ...programming interface ETS and clients e g visual display systems can access the KNX bus via the Interface The device uses the KNXnet IP protocol from the KNX Association for communication tunneling The Interface features five tunneling servers see chapter Use of the integrated tunneling servers They support both bus monitor and group monitor mode The tunneling servers can be operated in KNX Secure...

Page 8: ... is available for the IPsecure Interface see chapter Theben Tool An ETS app Theben Update App is available for the firmware update If KNX Secure mode is not activated for the devices a firmware update can also be performed with the Theben Tool During the update process the KNX bus TP must be connected in addition to the IP network LAN Otherwise the update process will fail It must be ensured that ...

Page 9: ...lication IP Interface IPsecure Interface ETS from ETS 3 from ETS 5 Properties of the IP Interface Number of tunneling servers 1 5 IP discovery IP Tool Firmware update with IP Tool Firmware update with Theben Update App Power over Ethernet KNX Secure Only if the device is not operated in KNX Secure mode ...

Page 10: ...issipation Maximum 1 8 W Auxiliary voltage current consumption Maximum 120 mA at 12 V Rated voltage Un 12 V DC Current consumption KNX 10 mA Connections KNX Bus connection terminal Plug in terminal for operating voltage Plug in terminal LAN RJ45 socket for 10 100BaseT IEEE 802 3 networks AutoSensing Operating and display elements Red LED and button For assignment of the physical address Green On L...

Page 11: ...tion on our website for this purpose Note ETS ETS 5 version 5 7 4 or higher and the current version of the device application are required for programming If the device is to be operated in KNX Secure mode the commissioning key FDSK see chapter KNX Secure on the side of the unit will be required as well The latest version of the application and corresponding software information are available for ...

Page 12: ...ing button 3 Telegram LED 8 Label carrier 4 Power supply connection 9 LAN or LAN PoE connection 5 KNX connection 10 Cover cap Note It is also possible to power the Interface via the voltage output without choke of an Theben KNX power supply This reduces the number of KNX devices that can be connected to the Theben KNX power supply accordingly ...

Page 13: ...IPsecure Interface KNX Device technology 14 2 3 Dimension drawing IPsecure Interface KNX ...

Page 14: ...s for the appropriate country should be observed when planning and setting up electrical installations and security systems for intrusion and fire detection Protect the device from damp dirt and damage during transport storage and operation Only operate the device within the specified technical data The device should only be operated in an enclosed housing distribution board The voltage supply to ...

Page 15: ... 30 60 seconds after the download 2 4 1 Unloading the device and resetting to factory settings The device can be reset to the factory settings This is a Secure device so the following information must be observed When the device is operated in KNX Secure mode it can be reset via ETS only if ETS uses the project with which the device was parametrized or if the commissioning key is available in the ...

Page 16: ...h the factory settings The Interface can be reprogrammed if ETS connects with the device after reset and if the device s FDSK is still known to ETS ETS will report that the device was reset in this case See chapter KNX Secure for more information about the FDSK Factory Default Setup Key Cleaning Disconnect the device from the electrical power supply before cleaning If devices become dirty they can...

Page 17: ...ltage must be 12 to 30 V DC or the device is powered via PoE Power over Ethernet according to IEEE 802 3af class 1 Connecting the device to a voltage outside the permissible range can destroy it KNX connection The supplied bus connection terminal is used to connect to the KNX bus Note Programming requires ETS ETS 5 version 5 7 4 or higher LAN connection The network connection is carried out via an...

Page 18: ...tinuously After approx 40 seconds the LED starts flashing until the startup process is complete and the LED lights up continuously again LAN LINK The LED lights up when the auxiliary voltage is present and the interface is connected to an Ethernet network The LED flashes when the device detects activity on the network e g when data is exchanged Telegram The LED lights up when the interface is conn...

Page 19: ... and the Engineering Tool Software ETS The application can be found under Theben AG System components Interfaces For parameterization purposes a PC or laptop with ETS and a connection to KNX are required 3 1 Overview The IPsecure Interface is parameterized using the Engineering Tool Software ETS 5 version 5 7 4 or higher ...

Page 20: ...in the Settings Properties window The device name loaded into the device can be changed in the Name field The device name is used for identification of the device on LAN After a search query e g by ETS every KNXnet IP device reports its name and can be allocated accordingly For example the installation location can be identified by the names assigned to the devices e g IP Interface HALL SUB7 etc N...

Page 21: ...ddress to the device If a DHCP server is not available in the network the device starts an auto IP procedure It assigns itself an address from the reserved range for auto IP addresses 169 254 1 0 to 196 254 254 255 For information about DHCP see chapter Assignment of IP address Use a static IP address If no DHCP server is installed in the network or if the IP address should remain the same it can ...

Page 22: ...another client e g a Visualisation Tunneling involves a client connecting to a bus line The tunneling process uses UDP but includes a data link layer so that telegrams are repeated in the event of an error Tunneling V2 is supported from ETS 5 TCP is used instead of UDP here and the TCP s data link layer is used for transmission The tunneling servers can also be encrypted with KNX Secure When KNX S...

Page 23: ...ertion of the Interface into the line ETS automatically reserves the first five free addresses of this line for the tunneling servers of the Interface This is a property of ETS and cannot be changed The addresses will be available in the device after the first download If this is not desired the setting can be changed manually in the Properties window To change the address mark the current device ...

Page 24: ...window opens in ETS to prompt the user to enter the key The cer tificate can also be read using a QR code scanner recommended o Alternatively the certificates of all Secure devices can be entered in ETS beforehand This is done on the Security tab on the project overview page o Two FDSK stickers are applied on the device One of them can be used for the project documentation and the other one can re...

Page 25: ...e Interface then cyclically three telegrams at intervals of 3 seconds followed by a pause of 20 seconds searches for a DHCP server As soon as a server is available again the address assigned by the DHCP server is used DHCP server fails device has already received IP address from DHCP Each IP address assigned by a DHCP has a validity time for use lease time This validity time is extended prior to e...

Page 26: ...en IP Tool 4 2 1 Discovery The IP Interfaces can be found in the network using the IP Tool Select Discovery mode in the ribbon area This function serves to find and display Theben IP devices in the network Note The functions are described in the IP Tool online help ...

Page 27: ...of charge from our website The device cannot be updated with the IP Tool in KNX Secure mode In this case the firmware update will be possible only with the ETS app Theben Update App Important During the update process the KNX bus TP must be connected in addition to the IP network LAN so that the KNX parameters can be restored correctly Otherwise the update process will fail It must be ensured that...

Page 28: ...prior notice The agreed properties are definitive for any orders placed Theben AG does not accept any responsibility whatsoever for potential errors or possible lack of information in this document We reserve all rights in this document and in the subject matter and illustrations contained therein Reproduction transfer to third parties or processing of the content including sections thereof is not...

Page 29: ...IPsecure Interface KNX Appendix 31 6 Open source software components OSS A list of the open source components used is available on the Internet at https www theben de OSS ...

Reviews:

No comments

Related manuals for 9070771

Magicfx FX-ARM CONTROLLER User And Installation Manual preview
FX-ARM CONTROLLER
Brand: Magicfx Pages: 16
Panasonic D-IMager EKL3104 Software User Manual preview
D-IMager EKL3104
Brand: Panasonic Pages: 13
Labokey 7200 Manual preview
7200
Brand: Labokey Pages: 5
E-Z Trail 550 Operator'S Manual / Parts Book preview
550
Brand: E-Z Trail Pages: 8
B&K 600 Operating Instructions Manual preview
600
Brand: B&K Pages: 10
Abbott CentriMag Quick Reference Manual preview
CentriMag
Brand: Abbott Pages: 2
Abbott FreeStyle Libre Software Update preview
FreeStyle Libre
Brand: Abbott Pages: 3
abc PHASER Operation And Maintenance Manual preview
PHASER
Brand: abc Pages: 8
ACE INSTRUMENTS WAVE Operating Manual preview
WAVE
Brand: ACE INSTRUMENTS Pages: 15
Wave Fitness Neptune Owner'S Manual preview
Neptune
Brand: Wave Fitness Pages: 15
CAIRE FreeStyle Comfort Technical Manual preview
FreeStyle Comfort
Brand: CAIRE Pages: 33
Eaton Crouse-hinds series Technical Manual preview
Crouse-hinds series
Brand: Eaton Pages: 32
EAW UX8800 Quick Start Manual preview
UX8800
Brand: EAW Pages: 2
abc 907 Instructions For Use Manual preview
907
Brand: abc Pages: 28
Qlight SK Quick Start Manual preview
SK
Brand: Qlight Pages: 4
Uchida Yoko BC-10 Service Manual preview
BC-10
Brand: Uchida Yoko Pages: 40
Vari Lite EVENTWASH VL800 User Manual preview
EVENTWASH VL800
Brand: Vari Lite Pages: 23
Vapotherm 2000i Operating Instructions Manual preview
2000i
Brand: Vapotherm Pages: 15

Brands by name

Popular brands

Load more brands