Secure industrial remoting, Industrial VPN gateways
In times of mass telecommuting and border closings, the remote management possibilities of industrial controllers and OT/IoT devices are of utmost importance. Cyber-security for these devices is also a high priority as the plague is not halting the miscreants, therefore more and more cyber-attacks happen in the “coronavirus season”.
It’s necessary to provide secure remote access, response and monitoring functions for operators, engineers and maintenance technicians who work from home or abroad. Due to the travel restrictions, it’s important to provide secure and reliable connection to industrial systems.
The most secure solutions for industrial remoting are the EWON Cosy and Flexy industrial VPN and remote access devices.
EWON – The expert on industrial remoting
Ewon
EWON devices, distributed by Black Cell, are specifically made for the needs of industrial users, therefore there is no specific IT Security expertise needed to set them up properly. Their biggest perk is that they can function besides the properly hardened IT/OT networks and just provide access to the necessary sections.
Machine-to-Machine (M2M)
The EWON automatic VPN services can create an automatic, machine-to-machine (M2M) connection with EWON’s Talk2M cloud service and then the operator can use a client application or a web UI to access PLCs or other ICS/OT devices.
As this solution is independent from the organization’s own IT infrastructure, the connected operators can’t reach anything within the boundaries of said network, just the devices connected to the EWON firewall. As this is a proper firewall, therefore rules can control which devices are available and to whom. Web-based interfaces (HMI, SCADA) can be also rendered natively in the cloud, without any need for an application.
In cases where the PLC devices are connected via traditional rs232 connections, the operators and engineers can reach these devices via EWON-provided usb to rs232 connections.
EWON Flexy
The EWON Flexy is capable of data collection besides secure remote connections and supports most of the well-known PLC manufacturers (Siemens, Omron, Mitsubishi, etc.) and protocols. Due to its flexible input options (can be ordered with both analogue and digital expansion boards) the Flexy is capable of collecting data from both ICS and IoT platforms.
IoT, PLC, OT
Talk about either Iot or PLC and OT devices, the EWON Flexy appliances are capable of building historical databases from querying PLCs or sensors. The data can be published to cloud SCADA and ERP systems or locally, to on-premise processors or databases.
- 3 LAN ports, industrial switch function
- 1 WAN port (optional Wi-Fi or
- 4G/LTE interface)
- Isolation firewall,
- NAT, NAT1:1
- Automatic M2M VPN
- Cloud-based management and client VPN
- Firewall within the VPN channel (user-based accesses)
- Free Talk2M cloud service (free for every device, 1GiB VPN traffic)
- Paid, Talk2M PRO service (more connections, 6GiB VPN traffic)
The free or paid Talk2M cloud service enables the centralized management of one or more EWON devices and the remote access for the devices behind them. If you require the optional Wi-Fi or 4G/LTE module, please indicate it in your query.
Recommended EWON device for secure industrial remoting and data collection: EWON Flexy 205
- 3 LAN ports, industrial switch function
- 1 WAN port
- Modular setup, Wi-Fi, 4G/LTE, more LAN ports, rs232, input cards
- Isolation firewall
- NAT, NAT1:1
- Automatic M2M VPN
- Cloud-based management and client VPN
- Firewall within the VPN channel (user-based acesses)
- Free Talk2M cloud service (free for every device, 1GiB VPN traffic)
- Paid, Talk2M PRO service (more connections, 6GiB VPN traffic)
- Data collection (example protocols: OPC UA, MODBUS/RTU,
- MODBUS/TCP, Unitelway, DF1, PPI, MPI (S7), PROFIBUS (S7), FINS Hostlink, FINS TCP, EtherNet/IP™, ISO TCP, Mitsubishi FX, Hitachi EH, ASCII, BACnet/IP, etc.)
- Historical database, up to 1 million records
- Data publication and sharing (Cloud, CSV, FTP, SQL, etc.)
EWON Flexy expansion cards
The free or paid Talk2M cloud service enables the centralized management of one or more EWON devices and the remote access for the devices behind them. If you require expansion cards, please indicate it in your query.