manualshive.com logo in svg

Elseta WCC Lite, Руководство пользователя, Страница: 154 / 160

Поделиться
Скачать
Elseta WCC Lite Скачать руководство пользователя страница 154

2020/04/07

WCC Lite user manual

2. make it more difficult to guess:

(a) don’t use the username root

(b) don’t use a weak password with 8 or less characters

(c) don’t let the SSH server dropbear listen on the default port (22)

3. use the combination of

(a) username different than root

(b) tell dropbear to listen on a random port (should be >1024):

System > Administration >

Dropbear Instance > Port

(c) public key authentication. Your public keys can be specified in

Administation > System

> SSH­keys

. An older guide to DropBear SSH public key authentication has detailed

information on generating SSH keypairs which include the public key(s) you should upload
to your configuration.

21.2 Groups rights

If user is logged on via external server, its authentification level is acquired. As no direct mapping
to existing users is used, authentification levels are a way to grant proper permissions for external
users. WCC Lite uses a CISCO­like authentification system, meaning that there are fifteen different
permission set level settings, of which the first 14 can be configured to enable or disable View and
Edit permissions.

21.2.1 SSH Access

SSH Access of WCC Lite is made by Dropbear software package. To extend the basic functionality,
Pluggable Authentification Module (PAM) for RADIUS is used. This enables user to add his own
authentification modules as long as they are properly configured.

Fifteen levels of authorization are mapped for SSH access, meaning that user should be able
to access SSH with credentials used to log into web interface. However, one should note that
permissions in command line interface are not configurable via web interface. This means that first
fourteen levels are restricted to basic permissions made my creating group by default. Highest level
user has all the permissions

root

user has.

If a user intends to change permissions for user groups, it should be done via command line
interfaces. It is only advised for advanced users.

21.2.2 Web interface permissions

Fifteen levels of authorization permission are mapped for web interface access, meaning that user
should be able to access web interface with credentials used to log into command line interface. User
assigned to a highest authorization level group is able to access every possible screen therefore this
groups cannot be edited.

Figure 37 shows a screen containing already existing groups in a device. Pressing

Add New

Groups...

guides user to an

Edit group

screen,

Edit

and

Delete

buttons respectively Edit and Delete

configuration of a given user group.

153

1.4.0 | ELSETA | Cyber security

Содержание WCC Lite

Страница 1: ...ELSETA WCC Lite User manual Elseta 2020 04 07 Doc version 1 4 0 HW version 1 2 FW version 1 4 0...

Страница 2: ...oducts manufactured by UAB Elseta All of the products copyrights belong to UAB Elseta These documents and product properties cannot be changed without the knowledge and written consent from UAB Elseta...

Страница 3: ...nt or in other areas where equipment failure or malfunction can result in hazardous life threatening consequences of human injury or harm to environment This product is NOT safe to use in an explosive...

Страница 4: ...ance If the WCC Lite components obtained mechanical damage If the WCC Lite was disassembled not as described in service and installation manual If the WCC Lite failure was due to deliberate or inadver...

Страница 5: ...he WCC Lite 15 5 1 Mounting 15 5 2 Power 15 5 3 SIM card slot 15 5 4 Dual SIM card slot 16 6 Interfaces 17 6 1 Serial port interfaces 17 6 2 Relay output 20 6 3 GSM 20 6 4 WiFi 22 7 Tags 23 7 1 Single...

Страница 6: ...4 8 4 5 Kernel Log 44 8 4 6 Processes 45 8 4 7 Realtime graph 45 8 4 8 GSM status 48 8 4 9 VNSTAT Traffic monitor 50 8 5 System 52 8 5 1 System 52 8 5 2 Administration 54 8 5 3 Software 56 8 5 4 Start...

Страница 7: ...Layer 2 Tunneling Protocol 88 8 8 Logout 90 9 API 91 10 SNMP 92 11 DNP3 93 11 1 DNP3 Master 93 11 2 DNP3 Slave 94 12 DLMS 95 12 1 Overview 95 12 2 Configuration 95 12 2 1 Devices section 95 12 2 2 Si...

Страница 8: ...106 15 2 1 Devices section 106 15 2 2 Signals section 106 16 WCC Lite internal signals 107 16 1 Overview 107 16 2 Configuration 107 16 2 1 Devices section 107 16 2 2 Signals section 107 17 Excel confi...

Страница 9: ...data endpoints 135 18 1 4 Debugging an IEC 61499 application 136 18 1 5 Generating and uploading FORTE logic file 138 18 1 6 Distributed control application 139 19 MQTT 143 19 1 Overview 143 19 2 Usin...

Страница 10: ...21 2 2 Web interface permissions 153 21 3 Conformance to IEC 62351 standard 155 22 Changelog 157 23 Information about the equipment manufacturer 159 10...

Страница 11: ...cover all of the use cases For usage not described in this document please contact Elseta technical support contact info available on the last page of this document 2 Hardware and software requiremen...

Страница 12: ...unt Din rail Environmental Operating temperature 40 C to 85 C Warranty 2 year Software Compatibility with HMI Human Machine Interface Compatible with cloud based SCADA system CloudIndustries eu Routin...

Страница 13: ...6 31 master IEC 62056 21 since v1 2 13 DNP3 master slave SMA Net DLMS since v1 3 0 Resol VBus Supported devices Other Elseta products Aurora PV inverters Delta inverters Kaco PV inverters SMA PV inver...

Страница 14: ...active ETH 1 On green ETH1 LINK Activity Off ETH1 not linked inactive WLAN On blue Wi fi enabled Blinking blue Connected Off Wi fi disabled GSM Blinking yellow Registered to network Off Not registered...

Страница 15: ...WCC Lite It is recommended to power WCC Lite from 6W minimum 12 24V DC power supply A full range is 5V to 36V Note Make sure that device is compatible with your power source before proceeding Check t...

Страница 16: ...sparent front panel cover and press through marked hole with small tool until SIM holder pops out To insert SIM cards remove Dual SIM holder and fit SIM cards into it Insert holder with SIM cards into...

Страница 17: ...RS232 interface on PORT1 and RS485 interface on PORT2 WCC Lite RS485 interface supports baud rates up to 115200 and has an integrated 120 termination resistor It is recommended to use termination at...

Страница 18: ...le check if A and B wires are not mixed up WCC Lite 3 wire RS232 interface is available on PORT1 and can be selected by user see Port settings Baud rates up to 115200 are supported See typical RS232 c...

Страница 19: ...2020 04 07 WCC Lite user manual Figure 8 Typical WCC Lite RS 485 connection diagram Figure 9 Typical WCC Lite RS 232 connection diagram 19 1 4 0 ELSETA Interfaces...

Страница 20: ...GSM WCC Lite comes with an optional GSM module There are few hardware configurations available Without GSM modem With single SIM modem HW version 1 0 1 2 2G 3G GPRS EDGE UMTS HSDPA HSUPA version 5 76...

Страница 21: ...n mini PCI e standard connector and compatible with any other devices Check label on package for current modification Connect an antenna to the SMA connector labeled GSM Select a good antenna placemen...

Страница 22: ...ect a Wi fi antenna to the SMA connector labeled WIFI Select a good antenna placement spot considering the operation environment Make sure the signal level is over 80dBm to have a stable connection to...

Страница 23: ...1 ON 7 2 Double point Double point signals contain two bits of information that allow four different states therefore they contain additional information compared to single point ones INDETERMINATE s...

Страница 24: ...h static network configuration with its IP set to 192 168 1 1 For initial setup set a static IP address on your computer and connect your network card to the WCC Lite with an ethernet cable 8 1 1 Stat...

Страница 25: ...2020 04 07 WCC Lite user manual 3 Click on Change adapter settings from the left side menu 4 Right click on the Local Area Connection icon then select Properties 25 1 4 0 ELSETA Internal web page...

Страница 26: ...4 you may need to scroll down to find it Next click on the Properties button 6 In the window that opens click the Use the following IP address radio button Fill the following fields and click OK IP ad...

Страница 27: ...minutes until the device boots Then open your web browser and enter the following url http 192 168 1 1 Supported web browsers Google Chrome recommended Mozilla Firefox Internet Explorer 8 or later Log...

Страница 28: ...ation through the website Contains the following sections PROTOCOL HUB configuration related to data exchange between WCC Lite and other devices STATUS system information and diagnostics SYSTEM basic...

Страница 29: ...fication with apply button will appear after making any changes 8 3 1 Manage devices The Manage Master Protocols section displays a list of configured devices Devices can be edited removed added and e...

Страница 30: ...ntifies this device If alias is left blank it will be generated automatically Enable If disabled configuration for this device will be ignored and it s measurements will not be updated Event history s...

Страница 31: ...on is performed similarly Name Job name Description Short device description Function A specific instruction to communicate with device These instruction options are protocol specific Retry Count This...

Страница 32: ...disabled configuration for this tag will be ignored and measurements will not be updated Function A specific instruction to communicate with device These instruction options are protocol specific Meas...

Страница 33: ...me Name for one measurement e g Temperature or Energy consumption Integer mask AND Add other tags values Source tags Source alarms Minimum value Maximum value Threshold units Absolute threshold Integr...

Страница 34: ...able on Cloud gateway firmware type Scan rate Time duration in milliseconds when all jobs on current port should be done This option directly affects measurement update speed on one port For example i...

Страница 35: ...ent in current configuration will be added Otherwise new content will not be processed Update If this checkbox is selected any items that already exist in current configuration replaced with new confi...

Страница 36: ...top of the list WCC Lite will time stamp the status data with a time resolution of one millisecond Initially all breakers protection contacts digital status input points in the WCCLite events capture...

Страница 37: ...al 8 3 6 Imported signals Imported signals section shows basic information about applied configuration This section is view only For signals and their states refer to Protocol Hub section Signals 37 1...

Страница 38: ...RAFFIC MONITOR graphical network traffic representation GSM STATUS all information about gsm device if it is present 8 4 1 Overview System System section in status tab shows basic information about cu...

Страница 39: ...urrently in use for active I O operations over installed physical memory Network IPv4 WAN IPv6 WAN status and active connections of the device Type Type of addressing of IPv4 network interface DHCP or...

Страница 40: ...connection to the Router Wireless WiFi interface information window SSID The sequence of characters that uniquely names a wireless local area network Mode Shows how the device is connected to the wire...

Страница 41: ...dware version Serial number Serial number of the board SoC ID Unique identifier of CPU unit 8 4 2 Firewall IPv4 Firewall Firewall rule list for IPv4 traffic Table The four distinct tables which store...

Страница 42: ...Mangle table is for specialized packet alteration The raw table is for configuration exceptions Chain The list of rules Filter table has the following built in chains Input concerns packets whose dest...

Страница 43: ...make multiple network interfaces act as if they were one network interface Network The type of network through which the traffic will be sent to the destination subnet Target An address of the destina...

Страница 44: ...ime and year facility process who generated the message priority level message Messages can be sorted and filtered to extract a particular set of messages This might be useful when debugging kernel or...

Страница 45: ...above 90 is an indicator of insufficient processing power Memory usage Memory usage of the individual process Hang Up To freeze the process Terminate To end the process cleanly Kill To end the proces...

Страница 46: ...ckets arrive at the device Outbound The speed of the packets which were originated by the device Phy Rate The speed at which bits can be transmitted over the physical layer Realtime Wireless WiFi stat...

Страница 47: ...nsport layer User Datagram Protocol TCP Transport layer Transmission Control Protocol Network Type of the network layer IPv4 or IPv6 Source Destination IP address and the port number Transfer The amou...

Страница 48: ...when connected to 4G LTE network RSSI when 2G 3G networks are used RSSI Received Signal Strength Indicator in dBm RSRP Received Signal Reference Power in dBm RSRQ Received Signal Reference Quality in...

Страница 49: ...tatus of network connection Internet status Status of connection to internet valid when gsm pinger is enabled and can reach provided hosts Operator Operator s name to which modem is currently connecte...

Страница 50: ...arriers carrying the reference signal The RSRP measurement bandwidth is equivalent to a single LTE subcarrier its value is therefore much lower than the total received power usually referred to as RSS...

Страница 51: ...sent from the device Configuration Interfaces to be monitored can be selected in a configuration screen It includes all the network interfaces configured in a system To start or stop monitoring user s...

Страница 52: ...BACKUP FLASH FIRMWARE management of the configuration files and firmware image upgrade REBOOT device reboot page 8 5 1 System Basic aspects of the device can be configured These include time settings...

Страница 53: ...output level Log output messages can be grouped by their importance to the user Levels are described in a table below Table 3 Log output levels Log output level Description Emergency System is unusab...

Страница 54: ...to use single time sync method to prevent time interference Time synchronization options are defined as Enable NTP client The local time of the device will sync with external time servers Provide NTP...

Страница 55: ...s SSH keys SSH keys can be added via WCC Lite web interface They might be helpful if the user logs into device frequently and does not want to always have to write his credentials HTTPS certificate WC...

Страница 56: ...be installed via WCC Lite web interface They can either be installed using web link or selected from the pre defined feeds Various options can be selected when installing packages however default one...

Страница 57: ...y intends to use only part of the processes User should not disable processes that are essential for device operation as it can render the device unusable User can optionally run scripts and programs...

Страница 58: ...ed email address 8 5 6 Mount points Global settings File system mount point configuration window Generate Config Find all currently attached filesystems and swap and replace configuration with default...

Страница 59: ...of main memory WCC Lite does not use any virtual memory by default It should be noted that virtual memory might do a lot of reading and writing operations As WCC Lite uses SD card as an additional fl...

Страница 60: ...l heart beats nand disk Flashed as data is written to flash memory netdev Flashes according to link status and send receive activity phy0rx phy0tx phy0assoc phy0radio phy0tpt Flashed on WiFi activity...

Страница 61: ...RAM memory will stop all Protocol HUB processes After upload you will have 2 minutes to proceed with firmware flash or to cancel it After 2 minutes firmware file will be deleted and Protocol HUB proc...

Страница 62: ...8 5 9 Reboot This reboots the operating system of the device 62...

Страница 63: ...and enable it Four options are available Enable agent Server address Port UDP Period s Every time timer of period length expires a message is sent to a server of configured server if service is enable...

Страница 64: ...certificate Selectable from configured auxiliary set Phase 1 proposal IKE selector Authentication encryption schema selectable from configured auxiliary set Phase 2 proposal ESP selector Authenticati...

Страница 65: ...6 required Hash algorithm selector Hash algorithm MD5 SHA1 SHA256 SHA384 or SHA512 required DH exponentiation selector Specifies Diffie Hellman groups 1 2 5 14 15 16 18 required Phase 2 proposals ESP...

Страница 66: ...st Creation of Phase 1 proposal Enter section Phase 1 proposals Create a new record by assigning new name for example aes256 sha256 dh5 and click the button Add Choose corresponding values encryption...

Страница 67: ...ret Phase 1 proposal IKE choose a value aes256_sha256_dh5 Phase 2 proposal ESP choose a value aes128_sha1 Locate combo box additional field select Local ID then set value to wcclite Push Save Activati...

Страница 68: ...d upon until after IPsec data has been decrypted and stripped which only takes place at the endpoints A potential point of confusion in L2TP IPsec is the use of the terms tunnel and secure channel The...

Страница 69: ...the options usually used in particular OpenVPN recipes To do more specific changes user should further select Switch to advanced configuration OVPN files contain configuration in a textual form there...

Страница 70: ...DNS servers HOSTNAMES allows management of host names STATIC ROUTES allows management of IPv4 and IPv6 static routes FIREWALL allows management of firewall zones and various firewall properties DIAGN...

Страница 71: ...ce Adding new Ethernet GSM or wireless interface with the custom name protocol and etc Table 7 Default interface settings eth0 eth1 Type Static DHCP Address 192 168 2 1 Subnet mask 255 255 255 0 Gatew...

Страница 72: ...General common interface setup panel Advanced common interface setup panel Physical common interface setup panel 72...

Страница 73: ...04 07 WCC Lite user manual Firewall common interface setup panel DHCP server general setup panel DHCP server advanced setup panel DHCP server IPv6 settings setup panel GSM 73 1 4 0 ELSETA Internal web...

Страница 74: ...It includes the following options Bring up on boot Checkbox to start a GSM interface on startup Use builtin IPv6 management Checkbox to select if the device is going to use its own tools to manage IPv...

Страница 75: ...protocol is a part of PPP Point to Point Protocol and helps to determine the quality of data transmission If enough failures happen LCP presumes link to be dead 0 disables failure count checking LCP e...

Страница 76: ...tification of the network only applicable in adhoc or STA mode Encryption Wireless encryption method List of associated wireless stations The Device Configuration section covers physical settings of t...

Страница 77: ...anual General interface settings Wireless security interface settings Advanced interface settings 8 7 3 DHCP and DNS DHCP server and DNS forward for NAT firewalls is described in this section 77 1 4 0...

Страница 78: ...General DHCP settings Resolve and hosts files settings TFTP server settings 78...

Страница 79: ...Lite user manual Advanced settings List of active DHCP and static leases It is also possible to assign fixed IP addresses to hosts on the network based on their MAC hardware address 79 1 4 0 ELSETA In...

Страница 80: ...terface static route is created Target Defines target host IP or network IPv4 Netmask Defines netmask if the target is a network IPv4 IPv6 Gateway Defines IPv4 or IPv6 gateway Metric Specifies the rou...

Страница 81: ...rwardings Defines zones and their traffic flow Input All incoming packets can be accepted rejected dropped Output All outgoing packets can be accepted rejected dropped Forward All packets being sent t...

Страница 82: ...anced settings of new created or edited zone Restrict to address family option defines to what IP families the zone belongs to IPv4 IPv6 or both Restrict masquerading to given source destination subne...

Страница 83: ...k created by the device Settings for the port forwarding of the device are defined as follows Name The name of the port forwarding rule Match Informs what port forward is matched to Forward to Informs...

Страница 84: ...for outgoing traffic for the example to map multiple WAN addresses to internal subnets The user can add edit or delete source NAT rules For every rule can be defined these options name protocol sourc...

Страница 85: ...IM modem is used there won t be SIM 1 and SIM 2 tabs Enable Enable or disable this SIM card PIN code PIN code to use on that SIM card APN APN to use on that SIM car PAP CHAP username Username if confi...

Страница 86: ...ed first Secondary host The host that will be pinged second if primary host fails Network interface GSM network interface name GSM Pinger is used to detect the status of network connection via cellula...

Страница 87: ...h card is expected on boot when selectiom is made between Enable Disable SIM cards and Primary card Table 8 Default SIM on boot SIM 1 Enabled SIM 2 Enabled Priority SIM SIM on boot X 1 1 X 2 1 X 1 2 X...

Страница 88: ...network traffic between the peers is bidirectional To be useful for networking higher level protocols are then run through the L2TP tunnel To facilitate this an L2TP session or call is established wi...

Страница 89: ...2020 04 07 WCC Lite user manual 3 Enter server name and authorization parameters 4 Save and apply the new configuration A new network interface will appear 89 1 4 0 ELSETA Internal web page...

Страница 90: ...nterface a logout button in interface s upper right corner should be pressed A user is automatically disconnected after ten minutes of inactivity This ensures that the device would not be suspect to a...

Страница 91: ...sion Version of the API api actions List of available points api syncVersion Version of the sync service api sync Protocol hub configuration sync name file api syslog Prints out the syslog api systemI...

Страница 92: ...percentage the inode index node is a data structure in a Unix style file system that describes a file system object such as a file or a directory Each inode stores the attributes and disk block locati...

Страница 93: ...high efficiency IEEE 1815 defines 4 subset levels 1 4 that consist of the objects and function codes that must be supported by the master and outstation Levels 1 3 are supported fully and level 4 is...

Страница 94: ...ection Excel configuration Table 11 Default signal variations Signal Static Variation Event Variation Binary Group1 Var2 Group2 Var1 Analog Group30 Var1 Group32 Var1 Double Bit Binary Group3 Var2 Grou...

Страница 95: ...ddress physical server address and id logical server address is used If a serial number is provided physical and logical server addresses are ignored master_address defines the client address This usu...

Страница 96: ...5 HighSha1 HighSha256 HighGmac HighEcdsa string None Low password Password for authentication string n a MyPass123 ip IP address string n a 192 168 0 141 port TCP port int n a 4059 12 2 2 Signals sect...

Страница 97: ...n either be encoded according to both RTU and ASCII parts of standard 13 1 Modbus Master Modbus communication contains a single Master and may include more than 1 but not more than 247 devices To gath...

Страница 98: ...ositive all jobs will have similar scan rate all reads and writes will be executed within this timeframe parameter scan_rate_ms in Signals tab will be ignored Yes No poll_retry_count integer Number of...

Страница 99: ...er transmits the most significant word byte first however devices from some vendors might require transmitting the least significant word byte first If that is the case make sure to switch bytes as ne...

Страница 100: ...hy link is not functioning properly To launch a debugging session a user should stop modbus master process and run modbus master command with respective flags as in Table 16 13 2 Modbus Slave WCC Lite...

Страница 101: ...alias from a Devices tab Yes signal_alias string Unique signal name to be used Yes number_type string Number variable type e g DIGITAL Yes common_address integer Address of a device Yes function inte...

Страница 102: ...debugging level c config Config path r raw Show raw telegram data f frame Show frame data s serial Show serial port data tcp Show tcp packets ascii Show ASCII messages rtu Show RTU messages e redis Sh...

Страница 103: ...nloaded separately from this user manual 14 1 1 Configuring datapoints To use IEC 60870 5 103 Master in WCC Lite it has to configured via an Excel configuration This configuration contains two Excel s...

Страница 104: ...commands source_signal_alias string signal_alias of a source signal For commands enable boolean Enabling disabling of a signal Yes log_size integer Space for signal in event log gi boolean Including...

Страница 105: ...es between two systems in electrical engineering and power system automation Telecontrol means transmitting supervisory data and data acquisition requests for controlling power transmission grids IEC...

Страница 106: ...know the port settings and the format of OBIS code representation as they can slightly differ see table depending on the configuration of the meter 15 2 Configuration 15 2 1 Devices section serialnumb...

Страница 107: ...0147238 4 kWh the value of the configuration field should be 1 8 0 24 excluding quotation marks Table 24 IEC 62056 21 tag configuration Parameter Description Type Default value Example tag_job Tag job...

Страница 108: ...pooler process 16 2 2 Signals section tag_job defines the tag job This can be set to gpio board netstat led and process tag_job_todo defines the job sub job This field should address the particular p...

Страница 109: ...tatus control wcclite blue wlan WLAN LED wcclite green eth0 ETH0 LED wcclite green eth1 ETH1 LED wcclite red fault Fault LED wcclite relay Relay LED Output process Check if process is running process...

Страница 110: ...ll devices to be configured on gateway Each row represents one device and its settings Following options are required for each device name Name of the device Used for representation only description A...

Страница 111: ...tings enable Flag to enable or disable device on system Can contain values 0 or 1 event_history_size Maximum number of signal events to save on device for later review Older records will be erased Thi...

Страница 112: ...e name of local TLS certificate tls_peer_certificate name of certificate authority CA TLS certificate tls_private_key name of private key for making TLS connections 17 1 4 Protocol specific settings P...

Страница 113: ...0 1e10 Device address timeout 0 6e7 Response timeout us MBus TCP id 0 1e10 Device address ip IPv4 IP address port 0 65535 TCP port timeout 0 6e7 Response timeout us Solplus url URI URL timeout 0 3600...

Страница 114: ...255 Maximum length of a message cache_size 0 1000 Maximum number of unsent events to store in a buffer respond_delay 0 10e6 Time in microseconds to wait before sending responses single_byte_ack boolea...

Страница 115: ...time synchronization sp_time boolean Add CP56Time2a information to single point signals dp_time boolean Add CP56Time2a information to double point signals me_time boolean Add CP56Time2a information t...

Страница 116: ...t in ms for solicited confirm unsolicited confirm and unsolicited retry Default 2000 transport_type string Transport type tcp tls serial any other value will throw runtime error Defines transport type...

Страница 117: ...ave station Default 1 max_rx_frag_size unsigned 32 bit integer Maximum size of received fragment Can t be bigger than 2048 IF bigger reduced to default Default 2048 unsol_classes string Defines for wh...

Страница 118: ...device defined in Devices sheet Signal is linked to a matching device signal_alias A unique short name for the signal It is used for linking signal to other signals Alias can only contain alphanumeri...

Страница 119: ...lues to add to current signal This field uses following format dev_alias tag_alias Multiple signals can be defines usign commas min_value Minimum expected value If result is lower than this value inva...

Страница 120: ...ber bit numeration starts from zero math_expression a mathematical expression for signal value to be evaluated against Explained in detail in section 17 2 7 17 2 3 Signal recalculation operation prior...

Страница 121: ...recalculation 17 2 4 number_type field This field is required for some protocols to determine a method to retrieve a signal value from hexadecimal form Available values FLOAT 32 bit single precision...

Страница 122: ...igned signed integer or double byte swapping is considered a bit level operation If a number is shorter than 64 bits the same logic applies the only difference is unavailability of some swapping opera...

Страница 123: ...onds for command execution Command select has to be performed before execution if this parameter is specified Direct command execution can be performed only if this field is left empty or set to zero...

Страница 124: ...g Analog Output Status Counter Frozen Counter signals Default 0 DNP3 Master select_ms integer Default command behaviour If 1 DirectOperateNoAck 0 DirectOperate any other number SelectBeforeOperate sig...

Страница 125: ...om example 1 2 Create a signal on slave device with single command type data_type 45 3 Set source_device_alias and source_signal_alias fields on master configuration coil signal to match device_alias...

Страница 126: ...s function atanh 1 hyperbolic arcur tangens function log2 1 logarithm to the base 2 log10 1 logarithm to the base 10 log 1 logarithm to base e 2 71828 ln 1 logarithm to base e 2 71828 exp 1 e raised t...

Страница 127: ...This expression can be compared to the operator supported by C C language Table 32 Condition is written before a question sign If condition is true result after question sign is selected If condition...

Страница 128: ...g 19xxxxxxx x x nt TagAttribute key similar to TagFlag but returns a numeric value of a tag attribute TagTime key returns unix timestamp in milliseconds of a last know tag value 17 3 Uploading configu...

Страница 129: ...guration files can be uploaded by a click of button There are four parameters not counting the configuration file itself that have to be filled in before starting upload Hostname an IP address for dev...

Страница 130: ...distributed to the available devices All devices within a system are described within a device model The topology of the system is reflected by the system model The distribution of an application is d...

Страница 131: ...nd either loaded into the runtime for debugging purposes functionality available from within the IDE or uploaded into the controller for normal use via web interface During debugging the output logic...

Страница 132: ...e as in Figure 16 Workspace is used to save files needed for projects Figure 16 Selecting 4Diac IDE workspace Figure 17 4Diac welcome screen After that a user should be met by the welcome window as in...

Страница 133: ...ling several elements into a subapplication For this you would have to select elements to be grouped press right key and select New Subapplication You can later change names of such elements and its p...

Страница 134: ...ted application distributed application cases will not be discussed in this chapter all the FBs of the application need to be selected and mapped to the configured controller as shown in figure 21 Fig...

Страница 135: ...y the application go to the System Configuration tab and simply select Deploy from the right click menu of the controller device figure 23 If a running application exist in the runtime you may be aske...

Страница 136: ...tring User friendly signal name device_alias string Device alias from a Devices tab signal_alias string Unique signal name to be used source_device_alias string device_alias of a source device source_...

Страница 137: ...ging There is a possibility that 4Diac FORTE might not start as a process It may happen if multiple faults occured and process has stopped Process is also programmed to not start if no excel configura...

Страница 138: ...e 26 Function blocks in watch mode Seeing information dynamically updated on 4Diac IDE might be very informative however some applications might require accesing WCC Lite via command line interface Fo...

Страница 139: ...use 18 1 5 Generating and uploading FORTE logic file After the PLC design is finished and debugged such design can be compiled into FBOOT file and uploaded to one or multiple devices to be used in pr...

Страница 140: ...be function blocks via UDP packets Client Server function blocks via TCP packets A Publish block can publish data messages using UDP multi cast addresses meaning that multiple devices would be able to...

Страница 141: ...screen as seen in Figure 30 Yellow function blocks belong to WCC_212 device which can be accessed through 192 168 4 212 port number 61499 whereas brown function blocks belong to WCC_218 device which...

Страница 142: ...em One part of the distributed application simple blinker is acquired from a Figure 19 and can be found in 31 Counting part is done in another device as seen in application in Figure 32 To count the b...

Страница 143: ...g SUBSCRIBE_X FB Every time a REQ is triggered a message is sent according to the ID input With the value of the ID input you can specify what specific network protocol you would like to use e g MQTT...

Страница 144: ...rity TLS encryption with user name password protected connections and optional certifications that requires clients to provide a certificate file that matches with the server s The clients are unaware...

Страница 145: ...entical values should not be sent multiple times in a row Default 1 true gi_interval_sec integer Parameter to determine how frequently should all values be sent at once Disabled if equal to 0 Default...

Страница 146: ...milliseconds flags contain additional information about a measurement MQTT messages are supported as value timestamp quality where value can be float integer or nan timeStamp Unix timestamp in millise...

Страница 147: ...tificate authority generates certificates for others Therefore Issuer and Subject fields are always the same for certificate authority certificate whereas they differ for local certificates Both of th...

Страница 148: ...e are explained in their respective chapters where applicable To get more details about how one could use TLS for Protocol Hub protocols please check section Excel configuration format To find out mor...

Страница 149: ...generally entitled to make changes while user does not have any editing permissions the relevant buttons are disabled User can be assigned to one of fifteen user groups that can access different amoun...

Страница 150: ...ers can also be added or edited via web interface as shown in Figure34 and Figure 35 User should enter user name user groups for which the user should belong the group must be preconfigured first SSH...

Страница 151: ...21 1 3 Authentication via external service WCC Lite support external authentification via RADIUS service Remote Authentication Dial In User Service RADIUS is a networking protocol that provides centr...

Страница 152: ...d up in an external source such as LDAP or Active Directory To use this mechanism a RADIUS server must be configured The parameter Radius Authentication must be Enabled on WCC Lite As of firmware vers...

Страница 153: ...n encrypted connection e g SSH e g by following firstlogin 4 ask for username and merely a signature instead of a password e g SSH with signature authentication If you ask for username password an att...

Страница 154: ...To extend the basic functionality Pluggable Authentification Module PAM for RADIUS is used This enables user to add his own authentification modules as long as they are properly configured Fifteen lev...

Страница 155: ...Figure 37 Screen showing existing user groups Figure 38 Screen for user group editing 154...

Страница 156: ...saved and applied succesfully 21 3 Conformance to IEC 62351 standard IEC 62351 is a standard developed by WG15 of IEC TC57 This is developed for handling the security of TC 57 series of protocols incl...

Страница 157: ...aphy No A secure distribution mechanism based on GDOI and the IKEv2 protocol is presented for the usage of symmetric keys e g session keys No IEC 62351 10 Security Architecture Explanation of security...

Страница 158: ...dded WCC Lite internal signal description 1 3 5 2020 01 31 Explained IEC 60870 5 103 GSM and API in detail Updated WCC Lite technical information 1 3 3 2020 01 20 IEC62056 21 over IP implemented Chang...

Страница 159: ...the web board information photo Started writing firmware version which this document is compatible with Added SNMP section Added device installation information Description on telemetry agent ser2net...

Страница 160: ...n about the equipment manufacturer Office address L Zamenhofo g 3 LT 06332 Vilnius Lithuania Tel 370 5 2032302 Email support elseta com In the web elseta com Work hours I V 8 00 17 00 159 1 4 0 ELSETA...

Отзывы:

Нет отзывов