Embed Size (px)
Citation preview
Barracuda CloudGen FirewallProtecting / Connecting IoT and IIoTInfrastructureFlorian Vojtech, Sales Engineer
BR
AN
D -
Co
nte
nt
A Focused Portfolio
Network &
Application
Security
Protection
Data
Protection
Transportation Financial Retail Manufacturing Industry
Broadcasting Government NGO Healthcare
Legal
Food
Zero Touch Deployment
Pool Licensing
Disaster Recovery
Multi-Tenancy
Native Cloud
Hardware
Virtual
Central Management & Lifecycle
Granular Admin Concept
Revision Control
Troubleshooting
GTI & Live Status
OPEX expenses
Reporting
Multi- ISP
WAN compr.
VPN + SSL-VPN
Traffic Intelligence
Traffic Shaping / QoS
Virtual WAN Balancing
Application-Based Link Selection
IPS/IDS
SSL Interception
User Awareness
Antivirus / Web Filter
Stateful FW + AppDetect
Advanced Threat Protection
(ATP)
+ Botnet & Spyware Detection
Operations
Security
Deployment
Challenges Barracuda CloudGen Firewalls Solve
Connectivity &
Secure SD-WAN
Barracuda’s Industry and IoT Solutions
Security Connectivity
Security
From Individualism to Patterns
From Individualism to Patterns
Connectivity
The Barracuda Approach
Zusammenspiel zwischen IT und OT
Rollout mit ZTD
SC SC SC SCSC
MASB
Zentrales Management
Konnektivität
Security
Things (IoT, ICS)
Warum nun aber Barracuda?
Typische Anwendungsbeispiele für Industrie 4.0
© Wikipedia
Energie
Banken
Retail
Medizin
Und viel mehr Möglichkeiten
Konzeption einer smart Factory 4.0
Blueprint für Industrie 4.0 (IoT/ICS)
Blueprint für Industrie 4.0 (IoT/ICS)
Blueprint für Industrie 4.0 (IoT/ICS)
Blueprint für Industrie 4.0 (IoT/ICS)
Blueprint für Industrie 4.0 (IoT/ICS))
Blueprint für Industrie 4.0 (IoT/ICS)
Supporting Industrial Protocols
S7 Sub-Protocols:
S7 UserData - Mode Transition S7 Alarm Lock Indication S7 Forces
S7 Stop S7 Alarm Query S7 UserData - Other Functions
S7 Warm Restart S7 Message Service S7 PLC Password
S7 Run S7 Notify-8 Indication S7 PBC BSend/BRecv
S7 UserData - Cyclic Data S7 Diagnostic Message S7 Request/Response
S7 Cyclic Data Unsubscribe S7 Alarm-8 Lock S7 PLC Stop
S7 Cyclic Data Memory S7 Scan Indication S7 Write
S7 Cyclic Data DB S7 Alarm Unlock Indication S7 Download
S7 UserData - Block Functions S7 Alarm-SQ Indication S7 CPU Services
S7 List Blocks S7 Alarm-S Indication S7 Upload
S7 List Blocks of Given Type S7 UserData - Time Functions S7 PLC Control
S7 Get Block Info S7 Read Clock S7 Setup Communication
S7 UserData - CPU Functions S7 Set Clock S7 Read
S7 Read SZL S7 UserData - Programmer Commands S7 Other
S7 Notify Indication S7 Remove Diagnostic Data S7 Ack
S7 Alarm-8 Indication S7 Erase S7 Server Control
S7 Alarm-8 Unlock S7 Request Diagnostic Data S7 User Data
S7 Alarm Ack S7 Variable Table S7Comm (legacy)
S7 Alarm Ack Indication S7 Read Diagnostic Data
IEC 60870-5-104 Sub-Protocols
IEC 60870-5-104 Process Information in Monitoring Direction
IEC 60870-5-104 Integrated Totals with Time Tag IEC 60870-5-104 Single Command
IEC 60870-5-104 Measured Value - Short Floating Point Number
IEC 60870-5-104 Packed Start Events of Protection Equipment with Time Tag
IEC 60870-5-104 Set Point Command - Normalized Value
IEC 60870-5-104 Packed Single-Point Information with Status Change Detection
IEC 60870-5-104 System Information in Monitoring Direction
IEC 60870-5-104 Set Point Command - Scaled Value
IEC 60870-5-104 Measured Value - Normalized Value without Quality Descriptor
IEC 60870-5-104 End of Initialization IEC 60870-5-104 Set Point Command - Normalized Value with Time Tag
IEC 60870-5-104 Single-Point Information with Time Tag IEC 60870-5-104 System Information in Control Direction IEC 60870-5-104 Regulating Step Command
IEC 60870-5-104 Measured Value - Short Floating Point Number with Time Tag
IEC 60870-5-104 Counter Interrogation Command IEC 60870-5-104 Bitstring of 32 Bits
IEC 60870-5-104 Packed Output Circuit Information of Protection Equipment with Time Tag
IEC 60870-5-104 Read Command IEC 60870-5-104 Single Command with Time Tag
IEC 60870-5-104 Double-Point Information IEC 60870-5-104 Interrogation Command IEC 60870-5-104 Set Point Command - Short Floating - Point Number with Time Tag
IEC 60870-5-104 Step Position Information IEC 60870-5-104 Reset Process Command IEC 60870-5-104 Bitstring of 32 Bits with Time TagIEC 60870-5-104 Measured Value - Scaled IEC 60870-5-104 Delay Acquisition Command IEC 60870-5-104 Double CommandIEC 60870-5-104 Integrated Totals IEC 60870-5-104 Test Command with Time Tag IEC 60870-5-104 Set Point Command - Short Floating Point
NumberIEC 60870-5-104 Double-Point Information with Time Tag IEC 60870-5-104 File Transfer IEC 60870-5-104 Double Command with Time Tag
IEC 60870-5-104 Step Position Information with Time Tag IEC 60870-5-104 File Ready IEC 60870-5-104 Regulating Step Command with Time Tag
IEC 60870-5-104 Bitstring of 32 Bits with Time Tag IEC 60870-5-104 Section Ready IEC 60870-5-104 Set Point Command - Scaled Value with Time Tag
IEC 60870-5-104 Event of Protection Equipment with Time Tag
IEC 60870-5-104 Directory IEC 60870-5-104 Parameter in Control Direction
IEC 60870-5-104 Single-Point Information IEC 60870-5-104 Call Directory, Select File, Call File, Call Section
IEC 60870-5-104 Parameter of Measured Value -Normalized Value
IEC 60870-5-104 Bitstring of 32 Bit IEC 60870-5-104 ACK File - ACK Section IEC 60870-5-104 Parameter of Measured Value - Scaled Value
IEC 61850 Sub-ProtocolsIEC 61850 Goose IEC 61850 SMV
IEC 61850 MMS IEC 61850 General
MODBUS Sub-ProtocolsMODBUS Data Access MODBUS Mask Write Register MODBUS Report Server IDMODBUS Read Coils MODBUS Read FIFO Queue MODBUS Diagnostic Check
MODBUS Read Discrete Inputs MODBUS Read Input Register MODBUS Get Communication Event CounterMODBUS Read Holding Registers MODBUS File Access MODBUS Encapsulated Interface Transport
MODBUS Write Single Register MODBUS Read File Record MODBUS Read Device IdentificationMODBUS Read/Write Multiple Registers MODBUS Write File Record MODBUS CAN-Open General ReferenceMODBUS Write Single Coil MODBUS Diagnostics Modbus (legacy)MODBUS Write Multiple Coils MODBUS Read Exception StatusMODBUS Write Multiple Registers MODBUS Get Communication Event Log
DNP3 Sub-Protocols
DNP3 Control Functions DNP3 Start Application DNP3 Authentication ErrorDNP3 Operate DNP3 Stop Application DNP3 Freeze FunctionsDNP3 Select DNP3 Warm Restart DNP3 Freeze and ClearDNP3 Direct Operate DNP3 Initialize Data DNP3 Freeze with TimeDNP3 Direct Operate no ACK DNP3 Configuration DNP3 Immediate FreezeDNP3 Time Synchronization DNP3 Save Configuration DNP3 Freeze and Clear no ACK
DNP3 Delay Measurement DNP3 Enable Spontaneous Messages DNP3 Immediate Freeze no ACKDNP3 Record Current Time DNP3 Assign Class DNP3 Freeze with Time no ACKDNP3 Transfer Functions DNP3 Disable Spontaneous Messages DNP3 File Access
DNP3 Read DNP3 Activate Configuration DNP3 Open FileDNP3 Write DNP3 Response Messages DNP3 Delete File
DNP3 Confirm DNP3 Unsolicited Response DNP3 Abort FileDNP3 Application Control DNP3 Authentication Response DNP3 Authenticate File
DNP3 Cold Restart DNP3 Response DNP3 Close FileDNP3 Initialize Application DNP3 Other DNP3 Get File Info
DNP3 Authentication Request
FSC2 Family
FSC2.0
BR
AN
D –
Co
nte
nt
(white)
New hardware for industrial use cases
BR
AN
D –
Co
nte
nt
(white) New F93 Rugged
- Intel 2 core CPU
- 4GB RAM
- 1x Serial console (RJ45)
- 3 ports: 2x 1G RJ45, 1x 1G SFP
- 2x USB 2.0
- Shock and vibration proof
- Extended temperature: -20 to +70°C
- IP20
- Optional: WiFi or 4G/LTE (H2/2020)
- Din rail mount
December
2019
BR
AN
D –
Co
nte
nt
(white) New F193 Rugged
December
2019
Successor Model of F183R
- Intel 4 core CPU
- 4GB RAM
- 1x Serial console (RJ45)
- 3 ports: 5x 1G RJ45, 2x 1G SFP
- 2x USB 2.0
- Shock and vibration proof
- Extended Temperature: -20 to +70°C
- IP20
- Optional: WiFi or 4G/LTE (H2/2020)
- Din rail mount
BR
AN
D –
Co
nte
nt
(white) Secure Connector SC3 Rugged
- Quad Core ARM Cortex A7MP 1.2GHz
- 2G RAM
- Storage 8GB on board + SD 16GB
- 4x RJ45 1G ports, 1x Serial console (RJ45)
- 1x USB A, 1x micro USB B (OTG)
- Extended temperature -20 to +70°C
- Shock and vibration proof
- 12V DC IN connector screw type or PoE PD on WAN port
- Dimensions: 120 x 148 x 56 mm
- Din rail mount
- Optional: WiFi and 4G/LTE (H2/2020: SC3.1, SC3.4, SC3.5)
Q1 2020
Thank You
