12.6. IEC104

The IEC104 protocol is a communication protocol used in the automation sector.

The IEC104 protocol helps to transfer the IEC104 data packets between a control station (client) and a substation (server) using a TCP/IP network. The IEC104 Enforcer function activates the Deep Packet Inspection (DPI) firewall capabilities for the IEC104 data stream. The type IDs in the IEC104 protocol specify the purpose of the data transfer. The device blocks the data packets that violate the specified profiles.

When the IEC104 Enforcer profile is active, the device applies the profile to the data stream.

The device permits only data packets containing the values specified in the following fields:

  • Function type

  • Advanced type ID list

  • Originator address list

  • Common address list

You can find the IEC104 enforcer at Firewall → Enforcer → IEC104.

IEC104

12.6.1. IEC104 Settings

Enabled

Wheter the IEC104 enforcer is active or not.

Possible values:

  • Enabled

  • Disabled (default setting)

Name

Name of the IEC104 enforcer.

Possible values:

  • Character string with 0..100 characters

Description

Description of the IEC104 enforcer.

Possible values:

  • Character string with 0..250 characters

Preset

Preset of Type IDs

Possible values:

  • Read Only

    Assigns the type IDs for the read function.

    1,3,5,7,9,11,13,15,20,21,30-40,70,100-102

  • Read Write

    Assigns the type IDs for the read/write functions.

    1,3,5,7,9,11,13,15,20,21,30-40,45-51,58-64,70,100-102

  • Common

    Assigns the type IDs for the common functions.

    1,3,5,7,9,11,13,15,20,21,30-40,45-51,58-64,70,100-102,110-113,120-127

  • Any (default setting)

    Assigns the type IDs for every function.

    1,2,..,254,255

    The device does not permit any subsequent changes in the Advanced Type IDs list.

  • Advanced

    Lets you specify user-defined values in the Type IDs list.

Type IDs

Gets prefilled depending on the preset selection.

If the preset is advanded you can select your own type ids here.

Allow IEC_60870_5_101

Activates/deactivates the type IDs defined in the IEC101 specification.

Possible values:

  • Enabled

    The type IDs defined in the IEC101 specification are active.

    The device permits the type ID values 2,4,6,8,10,12,14,16,17,18,19,103,104,105,106 along with the type IDs based on the values specified in the Function type field or Advanced type ID list field.

  • Disabled (default setting)

    The type IDs defined in the IEC101 specification are inactive.

    The device permits only the type ID values based on the values specified in the Function type or Advanced type ID list field.

Originator address list

Specifies the addresses from which data packets originated. The prerequisite is that in the Cause of transmission size field the value 2 is specified.

Possible values:

  • <empty> (default setting)

    The device permits data packets from any originator address.

  • 0..255

    The device permits data packets with the specified originator address.

Common address list

Specifies the addresses to which the device forwards the IEC104 data packets.

Possible values:

  • 0..255

    The device permits data packets with the specified common address. The prerequisite is that in the Common address size field the value 1 is specified.

  • 0..65535 (2¹?-1)

    The device permits data packets with the specified common address. The prerequisite is that in the Common address size field the value 2 is specified.

Sanity Check

Activates/deactivates the plausibility check for the data packets.

Possible values:

  • Enabled (default setting)

    The plausibility check is active.

    The device checks the plausibility of the data packets regarding format and specification.

    The device blocks the data packets that violate the specified profiles.

  • Disabled

    The plausibility check is inactive.

TCP Reset

Activates/deactivates the resetting of the TCP connection in case of a protocol violation or if the plausibility check detects an error.

Possible values:

  • Enabled (default setting)

    The resetting of the TCP connection is active.

    If the device identifies a protocol violation or detects a plausibility check error, then the device terminates the TCP connection. The device establishes the TCP connection again on receiving a new request.

  • Disabled

    The resetting of the TCP connection is inactive.

Debug

Activates/deactivates the debugging of the profiles.

Possible values:

  • Enabled

    Debugging is active.

    The device sends the reset packet along with the information related to the termination of TCP connection. The prerequisite is that the TCP reset checkbox is marked.

  • Disabled (default setting)

    Debugging is inactive.

Cause of transmission size

Specifies the size in octets that defines the variation of the respective fields in the data packets.

The device performs the DPI function based on these settings.

Possible values:

  • 1

    The data packets do not contain an originator address.

  • 2 (default setting)

    The data packets contain an originator address.

Common address size

Specifies the size in octets of the common address to which the device forwards the IEC104 data packets. This setting affects the setting in the Common address list field.

Possible values:

  • 1

  • 2 (default setting)

IO Address Size

Specifies the size in octets of the information object address.

Possible values:

  • 1

  • 2

  • 3 (default setting)

12.6.2. IEC104 Meaning of the Type ID list values

#

Meaning

1

Single point information M_SP_NA_1

2

Single point information with time tag M_SP_TA_1

3

Double point information M_DP_NA_1

4

Double point information with time tag M_DP_TA_1

5

Step position information M_ST_NA_1

6

Step position information with time tag M_ST_TA_1

7

Bit string of 32 bit M_BO_NA_1

8

Bit string of 32 bit with time tag M_BO_TA_1

9

Measured value, normalized value M_ME_NA_1

10

Measured value, normalized value with time tag M_ME_TA_1

11

Measured value, scaled value M_ME_NB_1

12

Measured value, scaled value with time tag M_ME_TB_1

13

Measured value, short floating point value M_ME_NC_1

14

Measured value, short floating point value with time tag M_ME_TC_1

15

Integrated totals M_IT_NA_1

16

Integrated totals with time tag M_IT_TA_1

17

Event of protection equipment with time tag M_EP_TA_1

18

Packed start events of protection equipment with time tag M_EP_TB_1

19

Packed output circuit information of protection equipment with time tag M_EP_TC_1

20

Packed single-point information with status change detection M_PS_NA_1

21

Measured value, normalized value without quality descriptor M_ME_ND_1

30

Single point information with time tag CP56Time2a M_SP_TB_1

31

Double point information with time tag CP56Time2a M_DP_TB_1

32

Step position information with time tag CP56Time2a M_ST_TB_1

33

Bit string of 32 bit with time tag CP56Time2a M_BO_TB_1

34

Measured value, normalized value with time tag CP56Time2a M_ME_TD_1

35

Measured value, scaled value with time tag CP56Time2a M_ME_TE_1

36

Measured value, short floating point value with time tag CP56Time2a M_ME_TF_1

37

Integrated totals with time tag CP56Time2a M_IT_TB_1

38

Event of protection equipment with time tag CP56Time2a M_EP_TD_1

39

Packed start events of protection equipment with time tag CP56time2a M_EP_TE_1

40

Packed output circuit information of protection equipment with time tag CP56Time2a M_EP_TF_1

45

Single command C_SC_NA_1

46

Double command C_DC_NA_1

47

Regulating step command C_RC_NA_1

48

Setpoint command, normalized value C_SE_NA_1

49

Setpoint command, scaled value C_SE_NB_1

50

Setpoint command, short floating point value C_SE_NC_1e

51

Bit string 32 bit C_BO_NA_1

58

Single command with time tag CP56Time2a C_SC_TA_1

59

Double command with time tag CP56Time2a C_DC_TA_1

60

Regulating step command with time tag CP56Time2a C_RC_TA_1

61

Setpoint command, normalized value with time tag CP56Time2a C_SE_TA_1

62

Setpoint command, scaled value with time tag CP56Time2a C_SE_TB_1

63

Setpoint command, short floating point value with time tag CP56Time2a C_SE_TC_1

64

Bit string 32 bit with time tag CP56Time2a C_BO_TA_1

70

End of initialization M_EI_NA_1

100

(General-) Interrogation command C_IC_NA_1

101

Counter interrogation command C_CI_NA_1

102

Read command C_RD_NA_1

103

Clock synchronization command C_CS_NA_1

104

( IEC 101 ) Test command C_TS_NB_1

105

Reset process command C_RP_NC_1

106

( IEC 101 ) Delay acquisition command C_CD_NA_1

107

Test command with time tag CP56Time2a C_TS_TA_1

110

Parameter of measured value, normalized value P_ME_NA_1

111

Parameter of measured value, scaled value P_ME_NB_1

112

Parameter of measured value, short floating point value P_ME_NC_1

113

Parameter activation P_AC_NA_1

120

File ready F_FR_NA_1

121

Section ready F_SR_NA_1

122

Call directory, select file, call file, call section F_SC_NA_1

123

Last section, last segment F_LS_NA_1

124

Ack file, Ack section F_AF_NA_1

125

Segment F_SG_NA_1

126

F_DR_TA_1

127

QueryLog - Request archive file F_SC_NB_1