Configuring extended firewall settings 

 See also the  Configuring basic firewall settings topic. For basic firewall configuration information, refer to the Firewall WBM topic in the main PLCnext Info Center.

In the exemplary security context, access from the Engineering Station is only allowed via the extension module from the superordinate network. 
To configure accesses according to the security context, proceed as follows:

  • Log in to the WBM. 

Return to topicHow do I get to the WBM again? Click here for more information... 

Establishing a connection to the Web-based Management (WBM):

  • Open a web browser on your computer.
  • In the address field, enter the URL https://<IP-address-of-the-controller>/wbm,
    for example: https://192.168.1.10/wbm.

For further information, see WBM.

  • Open the Firewall page (SecurityFirewall) in the WBM. 
  • Open the Basic Configuration tab. 
  • In the Basic Rules section, select Continue from the drop-down list for the Remoting in the Action column. 
  • Click the Apply button. 
  • Open the User Configuration tab. 
  • On the Input Rules tab, click the  (New rule)
  • Provide the following information:
    • Select the interface (refer to the topic AXC F 2152).
    • Enter the corresponding IP address (the IP address of the Engineering Station in the superordinate network). 
    • Enter the target port. 
  • Click the Apply button. 

Now you have access from the superordinate network (e.g. PLCnext Engineer) only via the extension module. 

Plant documentation

If you want to use the list of activated firewall rules in your plant documentation, you can export the list from the WBM.

Proceed as follows:

System Status section

If the firewall is active, you can generate an overview of all enabled firewall rules in a *.txt file. 

  1. Click on Show Rules in the System Status section.
    ⇒ The *.txt file with the activated firewall rules is being generated and opens in a dialog box.
     
  2. To save the active rules to a *.txt file, click Save to file in the dialog box.
    ⇒ The *.txt file is saved to the directory selected in the next step.


  For further information, refer to the Firewall WBM topic in the main PLCnext Info Center.

 

 

•  Web browser recommendation: Chrome, Firefox 78 or newer, Edge 88 or newer, or Safari • 
• Published/reviewed: 2023-01-13 • Revision 005 •