We are enhancing the connectivity policies of controllers in field running Codesys runtime. Is there any general guideline showing what are the ports that should be added to the whitelist ?
The main concern is keeping the ability to connect them in order to remote debug with the "login" feature on which we can see variable contents online.
Last edit: alrcastro 2020-06-24
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
I fear it doesn't apply to this case in particular, since the system architecture is defined as follows:
local PC (Codesys Engineering)
<==>
WEB
<==>
ROUTER
<==>
remote PC (Codesys runtime)
<==>
PLC
Note that, from the PC target view, either communication with PLC and ROUTER happens at distinct physical networks, I mean, at different Ethernet cables, therefore it shouldn't matter, isn't it ?
Thks
Last edit: alrcastro 2020-06-24
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Especially Chapter 7.
Networks ports used by CODESYS As described, controllers are designated to be programmed. Thus, CODESYS compatible controllers need certain open network ports for their designated use. The default communication ports are listed below.
We are enhancing the connectivity policies of controllers in field running Codesys runtime. Is there any general guideline showing what are the ports that should be added to the whitelist ?
The main concern is keeping the ability to connect them in order to remote debug with the "login" feature on which we can see variable contents online.
Last edit: alrcastro 2020-06-24
more posts ...
What brand of hardware are you running?
Hi @aliazzz,
I fear it doesn't apply to this case in particular, since the system architecture is defined as follows:
Note that, from the PC target view, either communication with PLC and ROUTER happens at distinct physical networks, I mean, at different Ethernet cables, therefore it shouldn't matter, isn't it ?
Thks
Last edit: alrcastro 2020-06-24
Hi,
the easy approach is for sure this: (I know you do not want to hear it - this is my last try) ;-)
https://www.youtube.com/watch?v=8KLywg51Xyk&t=6s
If you do it without CODESYS Automation server you should read this:
https://customers.codesys.com/fileadmin/data/customers/security/CODESYS-Security-Whitepaper.pdf
Especially Chapter 7.
Networks ports used by CODESYS As described, controllers are designated to be programmed. Thus, CODESYS compatible controllers need certain open network ports for their designated use. The default communication ports are listed below.
Best Regards
Edwin
Hi Edwin, it's exactly the list I wanted...thanks.
I appreciate your attempt, but I prefer to perform the control myself.
(-: