320 likes | 350 Views
EDS500 is a product family of ruggedized Ethernet/SHDSL switches and FSK modems designed to support critical infrastructure companies with enhanced communication technology, minimal downtime, predictive failure notification, and encrypted management.
E N D
Product Portfolio PGGA-P, 1KGT151033 EDS500 Product Presentation
Table of Contents • Introduction slide 03 • Applications and Use Cases slide 14 • Buying arguments slide 22 • Key takeaways slide 32
Introduction Overview Value proposition EDS500 is a product family of ruggedized Ethernet/SHDSL switches and FSK modems especially designed to support critical infrastructure companies by enhanced robust communication technology offering minimal downtime, predictive failure notification and encrypted management. Markets Utilities Energy, Water Transportation Railways, Highways Industries Chemical Oil & Gas Wells, Pipelines
Introduction Key Features Predictive failure notification Building of high available and reliable redundant networks Seamless transition from copper to fiber optics within one product family Integrated telecontrol IEC 60870-5-101 and -104 support including transparent conversion Integrated overvoltage protection Security: 802.1X, SNMP v3, ACLs, rate limiter, use of existing centralized account management possible Variety of configuration and monitoring options: From integrated web-server to powerful CLI Option for Power over Ethernet
Introduction EDS500 Product Portfolio DIN-rail Products 500NMDxx
Introduction Device Family 500NMD Benefits & Advantages Communication solution for copper and fiber optic transmission Includes types for simplified change between transmission media SFP-technology for flexible connection of fiber optic media Up to 25 km (copper) and 180 km (fiber) bridgeable distance Predictive fault notification Advantages • Equipped with serial interface (RS-232 / RS-485) to connect legacy serial devices • DIN rail mounting, all connections pluggable • Extended temperature range, no mechanical components • Small power consumption, wide range power supply (24-60 VDC) • Power over Ethernet (PoE) versions available
Introduction EDS500 Product Portfolio Rack Products 500NMSxx and 500NUSxx
Introduction EDS500 Product Portfolio Rack Products 23WTxx and DIN railproducts 500FSDxx
Introduction Portfolio Positioning Ethernet Serial Communication Portfolio Voltage Level ETL600 PLC System Transmission FOX-Family WAN Multiplexers AFS Switches Ethernet LAN Switches EDS500 Ethernet WAN Switches Distribution EDS500 Serial Modems Low Voltage kbps Mbps Gbps Bandwidth
Introduction Portfolio Positioning Ethernet Serial Mapping toapplications Voltage Level Network Backbone Field Busses RTU: IEC 61850 Teleprotection Transmission IP Telephony IP Video Surveillance RTU/IED/PLC: IEC 60870-5-101, DNP3, Modbus, … RTU/IED/PLC: IEC 60870-5-104 Distribution Smart-Meter Low Voltage kbps Mbps Gbps Bandwidth
Introduction Main Features Remote features SNMP, Syslog, Telnet, SSH, Webserver, Serial console Telecontrol protocols IEC 60870-5-101 & -104 Remote firmware update and restart Copper interface Transmission rate up to 15,000 kbps over 2-wire copper Achievable distance up to 25 km (at 192 kbps) Monitoring of signal quality (and lineloss) Adaptation of transmission rate to line quality Integrated overvoltage protection of up to 6 kV Fiber interface Achievable distance up to 180 km Monitoring of signal quality (and lineloss) Flexible solution by exchangeable SFP modules for simple selection of transceiver type and distance
Introduction Benefits Support for redundant topologies Support for virtual networks including QoS Tunneling of legacy RS-232/RS-485 protocols Voice frequency telegraphy (VFT) modem control support Party line (multi-drop) emulation is supported Retrofit business Exchange of communication equipment independently from process equipment Increase of bandwidth Support for new services and applications Integrated conversion of telecontrol protocol IEC 60870-5-101 to IEC 60870-5-104 Control Center IEC-101 IEC-104 RS-232 Ethernet Station 1 RS-232 or Ethernet VFT VFT VFT Station 2 RS-232 or Ethernet RS-232 1200 Baud Station 3 RS-232 1200 Baud Station 4 RS-232 1200 Baud
Applications and Use Cases Utilities Market 500NMD02 Station 1.2 Energy Use Cases Automation of transformer station Switchgear automation Monitoring of quality parameters Metering concentrator connection Video surveillance Benefits Reduced downtime Integration into existing network infrastructure Flexible extension of new applications Control Center 500NMD02 IEC104 RTU IEC104 RTU IEC104 RTU IEC104 RTU IEC104 Station 1.1 Cu RTU560 with 2 x 560NMS34 or 560NMS24 Cu 500NMD11 Station 1.3 FO 500NMD11 Station 1.4
Applications and Use Cases Transport Market Railways and Highways Use Cases Railways Passenger information (e.g. train service indicator) Signaling Video surveillance Use Cases Highways Control of dynamic traffic signs Monitoring of fog and ice indicators Video surveillance Benefits Long lifecycle Ease of deployment Small footprint O O O O Train 15 Berlin Train 234 Munich Control Station Train 15 Berlin Train 234 Munich
Applications and Use Cases Support ofnewservicesandapplications Enablingtheinstallationof additional applications Adding of additional (IP) services IP telephony (VoIP) Video surveillance (Video over IP) Technician access … Features that may be relevant RS-232 Tunneling/Emulation Port Rate Limiting (CAR) Virtual Networks (VLANs) Power over Ethernet (PoE+) Bandwidth planning Assumption of DSL transmission rate Quality of Service (QoS) Control Center IEC-101 IEC-104 RS-232 Ethernet Station 1 Service Laptop RS-232 Ethernet Station 2 IP Camera RS-232 Ethernet IP Phone Station 3 Ethernet RTU Station 4 RS-232 Ethernet IP Phone
Applications and Use Cases Replacementof VFT modem (Retrofit) Step-by-step exchange Control Center Control Center IEC-101 IEC-101 IEC-104 RS-232 Ethernet Modem 1200 Baud › Station 1 Station 1 RS-232 or Ethernet RS-232 1200 Baud EDS500 devicecontrols VFT partylinemodem VFT VFT VFT VFT VFT VFT VFT VFT Station 2 Station 2 RS-232 or Ethernet RS-232 1200 Baud RS-232 1200 Baud Station 3 Station 3 RS-232 1200 Baud RS-232 1200 Baud Station 4 Station 4 RS-232 1200 Baud RS-232 1200 Baud VFT: Voice FrequencyTelegraphy (FSK basedvoice-band modem, e.g. V.23)
Applications and Use Cases IEC-104 IEC 60870-5-10x conversion IP Conversionof a VFT lineto IEC-104 500NMDxx Series Optional Monitoring and Configuration of main switch functions by IEC-104 or IEC-101 Port up/down Signal quality and alarm … Converter use of 500NMDxx IEC-104 to IEC-101 Control of legacy VFT modems Conversion of multiple RTUs into IEC-104 Partyline control capability Transparent conversion, no IEC database or information object configuration VFT VFT VFT VFT line 15 RS-232 IEC-101 RS-232 IEC-101 Station 15-01 Link address 01 ASDU-Addr. CC41 Station 15-02 Link address 02 ASDU-Addr. CC42 Station 15-03 Link address 01 ASDU-Addr. CB20
Applications and Use Cases IEC-104 Integrated Micro RTU IP Usageofsingleinputand/oroutput Applications Input: Door contact for station or rack Output: Reset of other device Working principle Control lines of Console0 (RS-232) are mapped to IEC objects Binary input / output, or Counter Works with RS-232 voltage levels Input can be directly connected to output (such as RTS with “always on” setting) For output an external relay is required I/O mapping Console0 CTS is input Console0 RTS and DCD are output DoorContact Con0 RTS Con0 CTS
Applications and Use Cases Service separation Separation ofapplicationsinto VLANs Use of virtual networks (VLANs) Separation of traffic Router with Firewall to control traffic between VLANs and to or from Control Center Control Center IEC-101 IEC-104 Ethernet VLAN A: Telecontrol VLAN B: Voice & Video RS-232 VLAN C: Service Station 1 VLAN Z: Control Center Service Laptop RS-232 Ethernet VLAN Trunk Station 2 IP Camera RS-232 Ethernet IP Phone Station 3 Ethernet RTU Station 4 RS-232 Ethernet IP Phone
Buying Arguments Total Costof Ownership TCO Calculation (Project with 300 devices, installation life 15 years) Subject EDS500 Competitor Remark One time costs Investment in hardware 200 k€ 300 k€ Investment in spare parts 20 k€ 30 k€ 10% spare parts for 15 years Initial configuration 4 k€ (5 min/pc) 8 k€ (10 min/pc) Mean rate of 150 € / hr Installation 11 k€ (15 min/pc) 11 k€ (15 min/pc) Mean rate of 150 € / hr Total 235 k€ 349 k€ Recurring (yearly) costs Planned maintenance 2 k€ (3 min/pc/yr) 8 k€ (10 min/pc/yr) Update, reconfiguration, replacement Unplanned maintenance on product 10 k€ /yr 20 k€ /yr e.g. connection fault restoration Maintenance savings on infrastructure* - 10 k€ /yr 0 k€ savings regarding cable infrastructure Total for 15 years 30 k€ 420 k€ Grand Total 265 k€ 769 k€ Competitive pricing, no external over-voltage protection required Easy configuration and rollout * Not directly related to product. These costs are saved if predictive failure notification e.g. detects a faulty cable that must be exchanged. The exchange can be planned before the cable is unusable and therefore saves costs by converting unplanned into planned maintenance.
Buying Arguments Predictive Failure Notification Predictive Failure Notification is the ability to detect, monitor and analyze conditions that lead to circumstances that may result in severe error conditions and/or malfunctions and notify the user before such a condition becomes critical. Supported indications Example Early warning on WAN connection errors (DSL and fiber optic) Cable and coating faults, transmitter ageing Device failure due to overtemperature condition Installation error, component failure, defective cooling Device failure assumption on operating hour counter and product age Ageing equipment Service unavailability due to transmission line overload Network congestion leading to packet drop Predictive Failure Notification converts part of unplanned downtime into plannable maintenance and therefore reducing maintenance and consequential costs of service outages.
Buying Arguments Ruggedized Design Integrated overvoltageprotectioneliminatingneedforexternalsurgeprotection in manyapplications 4 kV Surge protection on anyinterface 6 kV DSL protection, integrated coarse protection, transformer and surge protection -40 to 80 °C operatingtemperaturerange Nomovingparts, maintenancefree High lifeexpectationincludingoperatinghourmeter Future readyby remote firmware update capabilitywith fast reboot time Surge Protection
Buying Arguments Interoperability Interoperability withConnection Backbone FOX615/XMC20 with DEFM1 linecard SHDSL FOX615/XMC20 with any Eth. (incl. fiber optical) linecard Ethernet RTU560 rack with 560NMS24/34 linecard SHDSL RTU560 rack with 560NUS04/12 (incl. fiber optical) linecard Ethernet 3rd Party 19“ Ethernet switch (RJ45-based or fiber optical) Ethernet Distribution level AFS LAN Switch Ethernet 3rd party SHDSL modem using modern EFM SHDSL SHDSL 3rd party DIN-rail Ethernet switch (RJ45 or fiber optical) Ethernet 3rd party serial modem SHDSL Ethernet (Fiber or RJ45) Ethernet Ethernet or SHDSL EDS500 EDS500 AFS 3rd Party Ethernet SHDSL Serial Ethernet 3rd Party RS-232 modem 3rd Party SHDSL modem EDS500 AFS
Buying Arguments Security User Authentication Devices implements easy-to-use two-layer password protection Read access (limited by login password) Read/write access (limited by enable-password) Authentication can be switched to a directory / group based approach Microsoft Active Directory Several free directory servers including OpenLDAP (with FreeRADIUS extension) Authentication of monitoring or supervision systems By SNMPv3 (Authentication and encryption) Authentication is available for any connection method
Buying Arguments Security Device Authentication A newly connected devices shall have no automatic access to the network Device authentication handling via IEEE 802.1X Initially link does not forward frames Newly connected device must provide certificate Which is authenticated by a central server Server tells the network device if to enable the link or not Security considerations Several configuration changes can be made to manage the tradeoffbetween security and usability for IEEE 802.1X Handling of end devices that are not 802.1X capable; but can still be authenticated via EDS500 and centralized server Switch Client RADIUS Server EAPoL RADIUS Link up Unauthorized Request Response Request Auth. Methods Auth. Methods Identity Identity Accept Success Authorized
Buying Arguments Security Access controllists (ACLs), packet filter ACLs allow filtering of network traffic based on MAC address (MAC Filtering) Ethertype IP address (IP Filtering) Protocol Protocol port (Port Filtering) Filtering possible in „incoming“ or „outgoing“ direction
Buying Arguments Security Logging is the persistent information of WHAT has happened e.g. Service outage WHEN has it happened e.g. 08.05.2018, 13:57:13 HOW has it happened e.g. Link Failure due to port shutdown WHO was involved e.g. user “deschot2” logged in from IP 192.168.78.42 by web browser Mechanisms Centralized monitoring by IEC 60870-5-10x (telecontrol system readable messages) Centralized logging by SYSLOG (human-readable messages) Centralized monitoring by SNMP (machine-readable messages) Local device internal logging Logging
Key Takeaways Unique Buying Points EDS500 is a competitive compact networking solution for automation driven markets with unique Buying points: Predictive failure notification SHDSL and Fiber optics in same device (500NMD11) IEC 60870 support Support for Power over Ethernet (PoE+) RS-232 tunneling Integrated overvoltage protection up to 6 kV Advancementstosomecompetitors • Redundancy featuresRSTP, MSTP, ERPS, Backup-group, Link-fault pass-through, event based link control • Security including logging and alarming • VLAN support and usage of multiple IP addresses per device (IP Multihoming)