Secure High-Availability Remote Access to Industrial · PDF fileRemote Management - SiteManager™ 3129 Secure High-Availability Remote Access to Industrial Devices The SiteManager™

Remote Management - SiteManager™ 3129

Secure High-Availability Remote Access to Industrial Devices

The SiteManager™ is an off-the-shelf component in the Secomea Industrial Communications Solution program that in combination with Secomea’s GateManager™ and LinkManager™ ensures unified, uninterrupted and secure access to remote devices.

The SiteManager™ 1029/3229 is a robust DIN mountable appliance that installs in the machine control panel, and provides remote access to all the industrial equipment in the panel via Ethernet,- Serial- or USB connection.

The SiteManager™ 1029/3229 establishes access to the Internet through the firewall of the existing wired network infrastructure, or wireless by installing a standard 4G/3G/GPRS modem in the USB op-tion slot.

The SiteManager™ 1029/3229 allows on-demand connection to any Ethernet device while overcoming any potential routing or IP conflict issues. Additionally the SiteManager features static VPN powered by the unique Secomea EasyTunnel™ concept.

SiteManager

Remote Management - SiteManager™ 1029 and 3229

Secure High-AvailabilityRemote Access to IndustrialDevices

• The SiteManager™ itself and its monitored devices

are all centrally managed and accessible from the

GateManager server.

• Built-in serial, USB and Ethernet access agents for

most PLC, HMI and Servo vendors in the market, as

well as agent templates for video, voice, PC and Scada

systems (including support for Siemens PPI and MPI)

• Firewall friendly communication,- uses standard web

protocols, and only inside-out.

• No requirement for public or fixed IP address.

SiteManager is by default DHCP enabled. No need to

re-configure the PLC with gateway address etc.

• Can operate as carrier of alarms, email alerts etc.

between devices and central logging servers over the

Internet.

• Built-in firewall, AES and x.509 certificates for maxi-

mum security

• All configuration, firmware and feature upgrades are

done remotely through an intuitive web GUI

• User-configurable email alerts for status monitoring

and configurable I/O ports for custom alarms.

• USB port for using a standard 4G/3G/GPRS adapter

for alternative Internet access or fail-over., or for

managing a USB enabled PLC.

• Includes the unique Secomea EasyTunnel Client fea-

ture for allowing easy enrollment in a VPN network.

EasyStart (Appliance Launcher) EnabledThe EasyStart Appliance Launcher is Secomea´s setup wizard pro-gram which makes it easy to make initial contact to and configura-tion of Secomea SiteManager appliances. The EasyStart Appliance Launcher is delivered free of charge.

GateManager™ Enabled GateManager™ enabled for easy, centralized configuration, backup, monitoring and access for remote service and maintenance of Seco-mea SiteManager and industrial devices. The GateManager is available both as a hosted service and as a stand-alone software package.

LinkManager™ Enabled The LinkManager is a one-step installation Windows application that runs on the support engineer PC. Working with GateManager™ it pro-vides secure on-demand access to remote devices through the Site-Managers. Once connected, it makes the remote device appear to the field engineer as if the Windows PC was connected directly to the de-vice. So with LinkManager, any remote device is just a few mouse clicks away.

State-of-the-Art SecurityThe SiteManager solutions are using state-of-the-art security stand-ards. This includes a built-in stateful Inspection Firewall, authentica-tions using x.509 digital certificate and encryption using the strong AES standard with up to 256-bit.

Firewall FriendlyThe end-user network security is priority number 1. With the SiteMan-ager and the security standard that this includes, it is important that end-user do not need to compromise their own corporate security standards. Therefore all communication is encrypted, even when using port 80 from the inside and out.

Local Management and loggingThe SiteManager has a local web-server, which enables any remote ac-cess and access rights to be controlled locally. On top of this, all traffic through the SiteManager is logged, stored and available in the SiteMa-nager itself.

PLC / HMI / Servo Ready Avoid all the hassle with equipment requiring different ports. All traffic is encapsulated in e.g. port 80. With the SiteManager’s preconfigured built-in agents for all major PLC / HMI / Servo manufacturers, it is as easy as it sounds.

Remote PC ReadyThe SiteManager has built-in preconfigured agents for remote PC using VNC and RDP. In addition to this, it is possible to customize an agent for other requirements.

VoIP and Video ReadyThe Remote Device Management solution supports VoIP and Video. De-signed agents are available in the SiteManagers as an easy option for adding new services and possibilities to remote service and support.

4G/3G/GPRS Option with Wake-on-SMSThe SiteManager 1029/3229 features an optional USB port for attaching a 4G/3G/GPRS adapter for connecting to the Internet. This feature is useful in cases where no wired infrastructure exists for connecting to the Internet. In addition the SiteManager supports a Wake-on-SMS that prevent consuming data traffic charges when in idle mode.

Fail-over / Fail-backBy connecting the wired Uplink and the 4G/3G/GRPS Uplink, the Site-Manager can perform fail-over and thereby ensure maximum uptime. By prioritizing the wired uplink, the SiteManager will automatically fail-back to the wired connection, thus reducing consumption of 4G/3G/GPRS data charges.

EasyTunnel™ VPN supportThe SiteManager supports the unique Secomea EasyTunnel VPN con-cept. Enabling the included EasyTunnel Client in the SiteManager 3229, will allow enrollment in a VPN network controlled by a TrustGate con-centrator. EasyTunnel works like ordinary IPSec VPN, but without the need for juggling certificates or keys. Simply enter the serial number of the SiteManager, and it is instantly enrolled in the VPN network.

SiteManager


Unique Specifications

LinkManager GateManager SiteManager

PLC ProgrammingHMI programmingWeb AccessScada systemDatabase systemVideo / CameraVoice / Phone

Secomea A/S

Denmark

E-mail: [email protected]

www.secomea.com

SiteManager


Technical Specifications

Electrical Characteristics

• 300 Mhz ARM9 CPU

• Input 12 - 48 V/DC, via screw terminals.

• Network Interfaces: 2 x 10/100 Mbit Ethernet (UPLINK, DEV1,) – RJ45 connection

• 2 x USB 2.0 full speed (Host)

• 1 x RS232 DB9 Serial port.

• Power consumption: max 3W excl. an attached USB network adapter. (Calculate with a total of 8W incl. USB adapter)

• 2x2 Digital I/O ports via screw terminals

Regulations

• FCC Class A, CE

• EN55022 Class A

• EN55024

• EN61000-3-2, 3

• EN61000-4-2, 3, 4, 5, 6, 8, 11

• IEC 60950

• C-Tick N29451

• UL Listed (file #E358541)

Physical Charateristics

• Operating temperature: -25° - +60C°, 5 to 95% RH

• Dimensions, unpacked: 107(H) x 32(W) x 97(D) mm, 450 g

• DIN mount bracket.

• Aluminium Chassis.

• 2-years Warranty

Networking Capabilities

• Choice of Uplink IP-assignment mode - DHCP client, PPPoE client, manual/static

• Telnet to Serial routing (rfc2217). Siemens MPI/PPI is supported via an adapter.

• DHCP server on Device LAN

• USB port for connecting a 4G/3G/GPRS dongle for use as Uplink

• USB port for managing USB enabled PLCs

• EasyTunnel™ support for enabling VPN via Secomea TrustGate

Monitoring and Logging Features

• System log with System Watchdog

• Central log via GateManager™

• GateManager™ Alerts (to e-mail, SMS; management system) and Alert Log for SiteManager™ and Agents

Configuration and Management

• EasyStart (Appliance Launcher) for easy initial contact and connection to GateMa-nager™

• Configuration and maintenance of SiteManager™ via browser (HTTPS/SSL - local or remote from GateManager™)

• Includes a Setup Assistant Wizard for guided configuration via the Web GUI

• Configuration backup management (via GateManager™ ) including scheduled backup and fast hardware replacement (cold backup)

• Configuration export and import (XML)

• Pre-defined Device Agents for easy setup of access to all PCs, web devices and all common PLCs and HMIs.

LED Signaling and I/Os

• 3 LEDs for signalling Power, Status and LinkManager connection.

• Digital Input port for site operator control of remote access

• Digital Output for signalling active Link-Manager connections

• 1 configurable digital input port for custom Email/SMS alert triggering

• 1 digital output port for toggling from the SiteManager GUI

Doc rev. 2012-12-18

Partnumbers Description

26902 SiteManager 1029 including 2 Device Agents


26903 Upgrade to 5 agents for model 1029




26876 upgrade to 100 agents for model 3229

26878 GateManager settings preconfigured

26940 MPI/PPI adapter (Ethernet)



The SiteManager™ is an off-the-shelf component in the Secomea Industrial Communications Solution program that in combination with Secomea’s GateManager™ and LinkManager™ ensures unified, uninterrupted and secure access to remote devices.

The SiteManager™ 1039 and 3239 is a robust DIN mountable appliance that installs in the machine control panel, and provides remote ac-cess to all the industrial equipment in the panel via Ethernet,- Serial- or USB connection.

The SiteManager™ 1039 and 3239 establishes access to the Internet through the firewall of the existing wired network infrastructure, or wireless by the built-in 3G/GPRS modem.

The SiteManager™ 1039 and 3239 allows on-demand connection to any Ethernet device while overcoming any potential routing or IP conflict issues. Additionally the SiteManager features static VPN powered by the unique Secomea EasyTunnel™ concept.

SiteManager

• The SiteManager™ itself and its monitored devices

are all centrally managed and accessible from the

GateManager server.

• Built-in serial, USB and Ethernet access agents for

most PLC, HMI and Servo vendors in the market, as

well as agent templates for video, voice, PC and Scada

systems (including support for Siemens PPI and MPI)

• Firewall friendly communication,- uses standard web

protocols, and only inside-out.

• No requirement for public or fixed IP address.

SiteManager is by default DHCP enabled. No need to

re-configure the PLC with gateway address etc.

• Can operate as carrier of alarms, email alerts etc.

between devices and central logging servers over the

Internet.

• Built-in SMS modem support on the Serial port and

SMS Gateway support on the Ethernet port (typically

used by Siemens and CoDeSys ready products)

• Built-in firewall, AES and x.509 certificates for maxi-

mum security

• All configuration, firmware and feature upgrades are

done remotely through an intuitive web GUI

• User-configurable email alerts for status monitoring

and configurable I/O ports for custom alarms.

• Built-in 3G/GPRS for alternative Internet access or

fail-over.

• Includes the unique Secomea EasyTunnel Client fea-

ture for allowing easy enrollment in a VPN network.



EasyStart (Appliance Launcher) EnabledThe EasyStart Appliance Launcher is Secomea´s setup wizard pro-gram which makes it easy to make initial contact to and configura-tion of Secomea SiteManager appliances. The EasyStart Appliance Launcher is delivered free of charge.

GateManager™ Enabled GateManager™ enabled for easy, centralized configuration, backup, monitoring and access for remote service and maintenance of Seco-mea SiteManager and industrial devices. The GateManager is available both as a hosted service and as a stand-alone software package.

LinkManager™ Enabled The LinkManager is a one-step installation Windows application that runs on the support engineer PC. Working with GateManager™ it pro-vides secure on-demand access to remote devices through the Site-Managers. Once connected, it makes the remote device appear to the field engineer as if the Windows PC was connected directly to the de-vice. So with LinkManager, any remote device is just a few mouse clicks away.

State-of-the-Art SecurityThe SiteManager solutions are using state-of-the-art security stand-ards. This includes a built-in stateful Inspection Firewall, authentica-tions using x.509 digital certificate and encryption using the strong AES standard with up to 256-bit.

Firewall FriendlyThe end-user network security is priority number 1. With the SiteMan-ager and the security standard that this includes, it is important that end-user do not need to compromise their own corporate security standards. Therefore all communication is encrypted, even when using port 80 from the inside and out

Local Management and loggingThe SiteManager has a local web-server, which enables any remote ac-cess and access rights to be controlled locally. On top of this, all traffic through the SiteManager is logged, stored and available in the SiteMan-ager itself.

PLC / HMI / Servo Ready Avoid all the hassle with equipment requiring different ports. All traffic is encapsulated in e.g. port 80. With the SiteManager’s preconfigured built-in agents for all major PLC / HMI / Servo manufacturers, it is as easy as it sounds.

Remote PC ReadyThe SiteManager has built-in preconfigured agents for remote PC using VNC and RDP. In addition to this, it is possible to customize an agent for other requirements.

VoIP and Video ReadyThe Remote Device Management solution supports VoIP and Video. De-signed agents are available in the SiteManagers as an easy option for adding new services and possibilities to remote service and support.

3G/GPRS Option with Wake-on-SMSThe SiteManager 1439/3239 features an built-in 3G/GPRS modem for connecting to the Internet. This feature is useful in cases where no wired infrastructure exists for connecting to the Internet. In addition the SiteManager supports a Wake-on-SMS that prevent consuming data traffic charges when in idle mode.

Fail-over / Fail-backBy connecting the wired Uplink and the 3G/GRPS Uplink, the SiteMan-ager can perform fail-over and thereby ensure maximum uptime. By prioritizing the wired uplink, the SiteManager will automatically fail-back to the wired connection, thus reducing consumption of 3G/GPRS data charges.

EasyTunnel™ VPN supportThe SiteManager supports the unique Secomea EasyTunnel VPN con-cept. Enabling the included EasyTunnel Client in the SiteManager, will allow enrollment in a VPN network controlled by a TrustGate concen-trator. EasyTunnel works like ordinary IPSec VPN, but without the need for juggling certificates or keys. Simply enter the serial number of the SiteManager, and it is instantly enrolled in the VPN network.

SMS Gateway - on Serial and Ethernet portsThe SiteManager’s serial port operates as a true SMS modem via the AT command set, and supports both outgoing SMSes generated e.g. by a PLC, as well as incoming SMS queing that a PLC can scan for.Additionally the Ethernet port supports the SMS syntax typically used in Siemens and CoDeSys code blocks for sending SMS messages from a PLC.

SiteManager



LinkManager GateManager SiteManager

PLC ProgrammingHMI programmingWeb AccessScada systemDatabase systemVideo / CameraVoice / Phone

Secomea A/S

Denmark


www.secomea.com









26878 GateManager settings preconfigured

26940 MPI/PPI adapter (Ethernet)

SiteManager



Doc rev. 2013-09-14






• 1 x RS232 DB9 Serial port with full flow control

• Power consumption: 5W (dimension power supply to 8W peak)


• Integrated broadband modem supporting the frequencies: WCDMA 850/1900/2100 MHz EDGE/GPRS 850/900/1800/1900 MHz

• 3G/GPRS standard polarity female SMA connector.

• Standard size SIM slot (available from outside)

Regulations

• FCC Class A, CE

• EN55022 Class A

• EN55024

• EN61000-3-2, 3

• EN61000-4-2, 3, 4, 5, 6, 8, 11

• IEC 60950

• C-Tick N29451

• A-tick N1246 (Integrated Sierra Wireless modem)

• UL Listed (file #E358541)





• Aluminium Chassis



• Choice of Uplink IP-assignment mode - DHCP client, PPPoE client, manual/static

• Telnet to Serial routing (rfc2217). Siemens MPI/PPI is supported via an adapter

• DHCP server on Device LAN

• Built-in 3G/GPRS for use as Uplink.

• USB port for managing USB enabled PLCs




• Central log via GateManager™

• GateManager™ Alerts (to e-mail, SMS; management system) and Alert Log for SiteManager™ and Agents


• EasyStart (Appliance Launcher) for easy initial contact and connection to Gate-Manager™







• 4 LEDs for signalling Power, Status, 3G/GPRS status and LinkManager connec-tion.


• Digital Output for signalling active Link-Manager connections

• 1 configurable digital input port for custom Email/SMS alert triggering

• 1 digital output port for toggling from the SiteManager GUI

• TheSiteManager™itselfanditsmoni-toreddevicesareallcentrallymanagedandaccessiblefromtheGateManagerserver.

• Built-inserial,USBandEthernetaccessagentsformostPLC,HMIandServovendorsinthemarket,aswellasagenttemplatesforvideo,voice,PCandScadasystems(includingsupportforSiemensPPIandMPI)

• Firewallfriendlycommunication,-usesstandardwebprotocols,andonlyinside-out.

• NorequirementforpublicorfixedIPaddress.SiteManagerisbydefaultDHCPenabled.Noneedtore-configurethePLCwithgatewayaddressetc.

• Canoperateascarrierofalarms,emailalertsetc.betweendevicesandcentralloggingserversovertheInternet.

• Built-infirewall,AESandx.509certifi-catesformaximumsecurity

• Allconfiguration,firmwareandfeatureupgradesaredoneremotelythroughanintuitivewebGUI

• User-configurableemailalertsforstatusmonitoringandconfigurableI/Oportsforcustomalarms.

• Optional4G/3G/GPRS/3GbroadbandsupportbyinstallingastandardUSBmodem.

• OptionalInternetaccessviatheoption-alWiFimoduleinstalledintheUSBport

• AutomaticfailoverbetweenEthernetUplinkandtheoptionalWirelessUplink.

• IncludestheuniqueSecomeaEasyTun-nelClientfeatureforallowingeasyenrollmentinaVPNnetwork.

• SecuritycertifiedinaccordancewithleadingstandardsmethodologiesspecifiedbyNIST,ISA/IEC,BSIandISECOM.

RemoteManagement-SiteManager™1129and3329


OPTIONAL

SiteManager™ is an off-the-shelf component in the Secomea Industrial

Communications Solution program that in combination with Secomea’s

GateManager™ and LinkManager™ ensures unified, uninterrupted and se-

cureaccesstoremotedevices.

SiteManager™issecuritycertifiedaccordingtothehighestindustrystand-

ardsof the industry,performedby the independentsecurityorganisation

ProtectEM GmbH in Germany in close cooperation with the Deggendorf

InstituteofTechnology.

TheSiteManager™1129and3329arerobustDINmountableappliancesthat

installs inthemachinecontrolpanel,andprovidesremoteaccessforon-

demandservicingandprogrammingofequipment,concurrentlywithstatic

connectionsformonitoringandlogging.

The SiteManager™ 1129 and 3329 provide remote access to all types of

industrial equipment via Ethernet,- Serial- or USB, using the equipment’s

nativeprotocols(e.g.Modbus,PROFINET,EtherCAT;EtherNet/IPetc.)

TheSiteManager™ 1129and3329establishaccesstothe Internetthrough

thefirewalloftheexistingwirednetworkinfrastructure,oroptionallywire-

lessly via a broadband modem or WiFi adapter installed in the USB port.

Additionally the SiteManager features static VPN powered by the unique

SecomeaEasyTunnel™concept.

OPTIONAL

PLC HMI PC Cam

GateManager™ Enabled GateManager™ enabled for easy, centralized configuration, backup,monitoringandaccessforremoteserviceandmaintenanceofSecomeaSiteManagerandindustrialdevices.TheGateManagerisavailablebothasahostedserviceandasastand-alonesoftwarepackage.

LinkManager™ Enabled The LinkManager is a one-step installation Windows application thatrunsonthesupportengineerPC.WorkingwithGateManager™itpro-videssecureon-demandaccess toremoteSerial, IPorUSBdevicesthroughtheSiteManagers.Onceconnected, itmakestheremotede-viceappeartothefieldengineerasiftheWindowsPCwasconnecteddirectlytothedevice.SowithLinkManager,anyremotedeviceisjustafewmouseclicksaway.

LinkManager™ Mobile Enabled The LinkManager Mobile is designed for accessing your devices viaatablet,mobilephoneorPCwithoutneeding installationofsoftware.LinkManagerMobileallowsaccesstodevicesusingWebbrowser,VNC/RDPRemoteDesktopclientsandselectediOSandAndroidRemoteHMIapps.

Static Device/Server Relays connections TheSiteManagerallowsStaticrelaystoaGateManagerenablingacen-tralserverorSCADAsystemtomonitordevicesreal-time,ortoallowdevicestopushstatusupdatesbacktothecentralserver.

Configurable Routing/Forwarding rules TheSiteManagercanbeconfiguredtoportforwardorrouteconnec-tionsbetweenitsUplinkandDevicenetworkports.ItcanevenbeusedassecureInternetrouterviaanintegratedWebproxy.

Optional EasyTunnel™ VPN supportTheSiteManagersupportstheuniqueSecomeaEasyTunnelVPNcon-cept. Enabling the included EasyTunnel Client in the SiteManager, willallowenrollmentinaVPNnetworkcontrolledbyaTrustGateconcen-trator.EasyTunnelworkslikeordinaryIPSecVPN,butwithouttheneedforjugglingcertificatesorkeys.SimplyentertheserialnumberoftheSiteManager,anditisinstantlyenrolledintheVPNnetwork.

State-of-the-Art SecurityTheSiteManagersolutionsareusingstate-of-the-artsecuritystand-ards. This includes a built-in stateful Inspection Firewall, authentica-tionsusingx.509digitalcertificateandencryptionusingthestrongAESstandardwithupto256-bit.TheentiresolutionisSecuritycertifiedac-cordingtothemostcurrentstandardsoftheindustry.

Firewall FriendlyTheend-usernetworksecurityisprioritynumber1.WiththeSiteMan-agerandthesecuritystandardthatthisincludes,it isimportantthatend-user do not need to compromise their own corporate securitystandards.Thereforeallcommunicationisencrypted,evenwhenusingport80fromtheinsideandout.

Local Access Management and loggingTheSiteManagerallowslocaladministeredaccessmanagementviaitsWebGUIordigitalports,inadditiontothecentraluseraccessmanage-ment.Ontopofthis,alluserconnectionsmadetotheSiteManageranditsconnecteddevicesareloggedcentrallyontheGateManager.

Drivers for any type deviceTheSiteManagerhasbuilt-inpreconfigureddrivers“agents”forremoteaccessinganytypeofdevicesuchasPLCs,HMis,IPCs,Robots,Servos,etc. Inaddition to this, it ispossible tocustomizeanagent forotherrequirements regardlessof it beingSerial, Ethernet,WiFi orUSBat-tached.

WiFi operation in Client modeByapplyingtheSecomeaUSBWiFiadapter,theSiteManagerwillauto-maticallyenableWiFiClientmode,andtheSiteManagerwillbeabletoaccesstheInternetviaalocalaccesspoint.

4G/3G/GPRS Option with Wake-on-SMSTheSiteManager 1129/3329featuresanoptionalUSBportforattach-ingastandard4G/3G/GPRSUSBmodemforconnectingtotheInternet.ThisfeatureisusefulincaseswherenolocalinfrastructureexistsforconnectingtotheInternet.

Fail-over / Fail-back (Wired / Wireless)WhenenablingboththewiredandthewirelessUplinkoption(broad-bandorWiFi installed intheUSBport), theSiteManagercanperformfail-overandtherebyensuremaximumuptime.Byprioritizingthewireduplink, theSiteManagerwill automatically fail-back to thewiredcon-nection,thusreducingconsumptionofbroadbanddatacharges.

Flexible Alert notification systemTheSiteManagercanbeusedasgatewayforalertsgeneratedbylocaldevicesviaEthernet,Serialordigitalinputtriggers,orbytheGateMan-agermonitoringstatusoftheSiteManagerandlocaldevices.AlertsareadministeredbythecentralGateManagerfromwheretheycanbesentasSMSorEmail.Inadditionallgeneratedalertarecentrallylogged.

RemoteManagement-SiteManager™3129




Secomea A/S

Denmark


www.secomea.com


30209 SiteManager1129including5DeviceAgents


27101 SecomeaWiFiUSBadapterforoperationasWiFiClient

27250 SecomeaWiFiUSBadapterwithSMAadapterforoperationasWiFiClient

26878 GateManagersettingspreconfigured

26940 MPI/PPIadapter(Ethernet)

Doc rev. 2015-05-15


• 536MhzARMCortexA5CPU

• Input12-24V/DC,viascrewterminals.

• NetworkInterfaces:2x10/100Mbit Ethernet(UPLINK,DEV1,)–RJ45connection

• 2xUSB2.0fullspeed(Host)

• 1xRS232DB9Serialportwithfullflowcontrol

• Powerconsumption:max3Wexcl.anyoptionalUSBdevice.s(Calculatewithatotalof8Wincl.USBdevices)

• 2xdigitalinputports

• 1xoutputrelay(max0,5A),1xdigitalout-putopendrain(max0,2A)

Regulations

• CE(EN61000-6-2,EN61000-6-4,EN301489-1,EN301489-3)

• FCC47cfrpart15

• ULListed(file#E358541,ITE4ZP8)

• RCMapproval(AvailableJune2015)


• Operatingtemperature:-25°-+60C°,5to95%RH

• Dimensions,unpacked:107(H)x32(W)x97(D)mm,500g

• DINmountbracket.

• AluminiumChassis

• 2-yearsWarranty


• ChoiceofUplink(WAN)Internetaccess:-Ethernet,-WiFiUSBOption(IEEE802.11b/g/n)-BroadbandUSBOption(4G/3G/GPRS)

• ChoiceofUplinkIP-assignmentmode:DHCPclient,PPPoEclient,manual/static

• TelnettoSerialrouting(rfc2217).SiemensMPI/PPIissupportedviaanadapter

• DHCPserveronDeviceLANbyEthernet

• USBportforremoteaccessingUSBena-bleddevices(directlyorviaUSBhub)

• EasyTunnel™supportforenablingVPNviaSecomeaTrustGate

• SupportforremoteaccessbyanyUDP/TCPbasedprotocol


• SystemlogwithSystemWatchdog

• AutomaticeventloggingonGateMan-ager™

• AlertnotificationsgeneratedbySiteMan-agerorGateManagerandsentasemailorSMSfromtheGateManager


• ApplianceLauncherforeasyinitialcon-tactandconnectiontoGateManager™

• ConfigurationandmaintenanceofSiteManager™viabrowser(HTTPS/SSL-localorremotefromGateManager™)

• IncludesaSetupAssistantWizardforguidedconfigurationviatheWebGUI

• Easyconfigurationwithpre-definedconfigurationusingaUSBstick

• Configurationbackupmanagement(viaGateManager™)includingscheduledbackupandfasthardwarereplacement(coldbackup)

• Configurationexportandimport(XML)

• Pre-definedDeviceAgentsforeasysetupofaccesstoallPCs,webdevicesandallcommonPLCsandHMIs.


• 3LEDsforsignallingPower,StatusandLinkManagerconnection.

• DigitalInputportforsiteoperatorcontrolofremoteaccess

• DigitalorRelayoutputforsignallingactiveLinkManagerconnections,andGateMan-agerconnectionstatus.

• ConfigurabledigitalinputportforcustomEmail/SMSalerttriggering

• OutputportforcustomtogglingfromtheSiteManagerGUI



• TheSiteManager™itselfanditsmonitoreddevicesareallcentrallymanagedandac-cessiblefromtheGateManagerserver.


• Firewallfriendlycommunication,-usesstandardwebprotocols,andonlyinside-out.

• NorequirementforpublicorfixedIPad-dress.SiteManagerisbydefaultDHCPenabled.Noneedtore-configurethePLCwithgatewayaddressetc.

• Canoperateascarrierofalarms,emailalertsetc.betweendevicesandcentralloggingserversovertheInternet.

• Built-infirewall,AESandx.509certificatesformaximumsecurity



• Built-inSMSmodemsupportontheSerialportandSMSGatewaysupportontheEth-ernetport(typicallyusedbySiemensandCoDeSysreadyproducts)

• IntegratedGPRS/3GbroadbandmodemforalternativewirelessInternetaccessorfailover.

• OptionalInternetaccessviatheoptionalWiFimoduleinstalledintheUSBport

• IncludestheuniqueSecomeaEasyTunnelClientfeatureforallowingeasyenrollmentinaVPNnetwork.

• Securitycertifiedinaccordancewithlead-ingstandardsmethodologiesspecifiedbyNIST,ISA/IEC,BSIandISECOM.



OPTIONAL

SiteManager™isanoff-the-shelfcomponentintheSecomeaIndustrialCommunicationsSolutionprogramthat incombinationwithSecomea’sGateManager™ and LinkManager™ ensures unified, uninterrupted andsecureaccesstoremotedevices.

SiteManager™ is security certified according to the highest industrystandardsof the industry,performedby the independentsecurityor-ganisation ProtectEM GmbH in Germany in close cooperation with theDeggendorfInstituteofTechnology.

TheSiteManager™ 1139and3339arerobustDINmountableappliancesthatinstallsinthemachinecontrolpanel,andprovidesremoteaccessforon-demandservicingandprogrammingofequipment,concurrentlywithstaticconnectionsformonitoringandlogging.

TheSiteManager™1139and3339provideremoteaccesstoalltypesofindustrialequipmentviaEthernet,-Serial-orUSB,usingtheequipment’snativeprotocols(e.g.Modbus,PROFINET,EtherCAT;EtherNet/IPetc.)

TheSiteManager™1139and3339establishaccesstotheInternetthroughthefirewalloftheexistingwirednetworkinfrastructure,orwirelesslybythe integrated3G/GPRSmodem.AdditionallytheSiteManagerfeaturesstaticVPNpoweredbytheuniqueSecomeaEasyTunnel™concept.

PLC HMI PC Cam











WiFi operation in Client modeApplyingtheSecomeaUSBWiFiadaptertotheSiteManagerwillauto-maticallyenableWiFiClientmode,andtheSiteManagerwillbeabletoaccesstheInternetviaalocalaccesspoint.

3G/GPRS Wake-on-SMSWhenconnectedviabroadbandtheSiteManagercanbeconfiguredtoentersleepmode,topreventconsumingdatatrafficchargeswhenidle.SimplysendanSMStotheSiteManageranditwillbeinstantlyavailable.

Fail-over / Fail-back (Wired / Wireless)WhenenablingboththewiredandWirelessUplink(broadbandorop-tionalWiFi),theSiteManagercanperformfail-overandtherebyensuremaximumuptime.Byprioritizingthewireduplink,theSiteManagerwillautomatically fail-back to the wired connection, thus reducing con-sumptionofbroadbanddatacharges.

Flexible Alert notification systemAnySiteManagercanbeusedasgatewayforalertsgeneratedbylocaldevicesviaEthernet,Serialordigitalinputtriggers,orbytheGateMan-agermonitoringstatusoftheSiteManagerandlocaldevices.AlertsareadministeredbythecentralGateManagerfromwheretheycanbesentasSMSorEmail.Inadditionallgeneratedalertarecentrallylogged.

True SMS Gateway - via Serial and EthernetTheserialportofSiteManager1139and3339operatesasatrueSMSmodem via the AT command set, and supports both outgoing SMSesgenerated e.g. by a PLC, as well as incoming SMS queing that a PLCcanscanfor.AdditionallytheEthernetportsupportstheSMSsyntaxtypicallyused inSiemensandCoDeSyscodeblocksforsendingSMSmessagesfromaPLC.





Secomea A/S

Denmark


www.secomea.com




27101 SecomeaWiFiUSBadapterforoperationasWiFiClient

27250 SecomeaWiFiUSBadapterwithSMAadapterforoperationasWiFiClient

26878 GateManagersettingspreconfigured


Doc rev. 2015-05-16



• Input12-24V/DC,viascrewterminals.






• 1xoutputrelay(max0,5A),1xdigitalout-putopendrain(max0,2A)

• IntegratedHSPA+broadbandmodemsup-portingthefrequencies:WCDMA850/1900/2100MHzEDGE/GPRS850/900/1800/1900MHz

• 3G/GPRSstandardpolarityfemaleSMAconnector.

Regulations

• CE(EN61000-6-2,EN61000-6-4,EN301489-1,EN301489-3)

• FCC47cfrpart15






• DINmountbracket.


• 2-yearsWarranty


• ChoiceofUplink(WAN)Internetaccess:-Ethernet,-WiFiUSBOption(IEEE802.11b/g/n)-3G/GPRS



• DHCPserveronDeviceLANbyEthernet







• AlertnotificationsgeneratedbySiteMan-agerorGateManagerandsentasemailorSMSlocallyorcentralizedfromtheGateManager

• Bi-directionalSMSGatewaysupportviaSerialATcommandsandUDP/TCPscriptcommands





• Easyconfigurationwithpre-definedconfigurationusingaUSBstick



• Pre-definedDeviceAgentsforeasysetupofaccesstoallPCs,webdevicesandallcommonPLCsandHMIs.


• 4LEDsforsignallingPower,Status,3G/GPRSstatusandLinkManagerconnec-tion.


• DigitalorRelayoutputforsignallingactiveLinkManagerconnections,andGateMan-agerconnectionstatus.





SiteManager™ is an off-the-shelf component in the Secomea Industrial Communications Solution program that in combination with Secomea’s GateManager™ and LinkManager™ ensures unified, uninterrupted and secure access to remote devices.

SiteManager™ is security certified according to the highest industry standards of the industry, performed by the independent security or-ganisation ProtectEM GmbH in Germany in close cooperation with the Deggendorf Institute of Technology.

The SiteManager™ 1139 4G and 3339 4G are robust DIN mountable appli-ances that installs in the machine control panel, and provides remote access for on-demand servicing and programming of equipment, con-currently with static connections for monitoring and logging.

The SiteManager™ 1139 4G and 3339 4G provide remote access to all types of industrial equipment via Ethernet,- Serial- or USB, using the equip-ment’s native protocols (e.g. Modbus, PROFINET, EtherCAT; EtherNet/IP etc.)

The SiteManager™ 1139 4G and 3339 4G establish access to the Internet through the firewall of the existing wired network infrastructure, or wirelessly by the integrated 4G(LTE)/3G/GPRS modem. Additionally the SiteManager features static VPN powered by the unique Secomea EasyTunnel™ concept.

• The SiteManager™ itself and its monitored devices are all centrally managed and ac-cessible from the GateManager server.

• Built-in serial, USB and Ethernet access agents for most PLC, HMI and Servo vendors in the market, as well as agent templates for video, voice, PC and Scada systems (including support for Siemens PPI and MPI)

• Firewall friendly communication,- uses standard web protocols, and only inside-out.

• No requirement for public or fixed IP ad-dress. SiteManager is by default DHCP enabled. No need to re-configure the PLC with gateway address etc.

• Can operate as carrier of alarms, email alerts etc. between devices and central logging servers over the Internet.

• Built-in firewall, AES and x.509 certificates for maximum security

• All configuration, firmware and feature upgrades are done remotely through an intuitive web GUI

• User-configurable email alerts for status monitoring and configurable I/O ports for custom alarms.

• Built-in SMS modem support on the Serial port and SMS Gateway support on the Eth-ernet port (typically used by Siemens and CoDeSys ready products)

• Integrated 4G broadband modem for alter-native wireless Internet access or failover.

• Optional Internet access via the optional WiFi module installed in the USB port

• Includes the unique Secomea EasyTunnel Client feature for allowing easy enrollment in a VPN network.

• Security certified in accordance with lead-ing standards methodologies specified by NIST, ISA/IEC, BSI and ISECOM.

Remote Management - SiteManager™ 1139 4G and 3339 4G


OPTIONAL

4G

PLC HMI PC Cam

GateManager™ Enabled GateManager™ enabled for easy, centralized configuration, backup, monitoring and access for remote service and maintenance of Secomea SiteManager and industrial devices. The GateManager is available both as a hosted service and as a stand-alone software package.

LinkManager™ Enabled The LinkManager is a one-step installation Windows application that runs on the support engineer PC. Working with GateManager™ it pro-vides secure on-demand access to remote Serial, IP or USB devices through the SiteManagers. Once connected, it makes the remote de-vice appear to the field engineer as if the Windows PC was connected directly to the device. So with LinkManager, any remote device is just a few mouse clicks away.

LinkManager™ Mobile Enabled The LinkManager Mobile is designed for accessing your devices via a tablet, mobile phone or PC without needing installation of software. LinkManager Mobile allows access to devices using Web browser, VNC/RDP Remote Desktop clients and selected iOS and Android Remote HMI apps.

Static Device/Server Relays connections The SiteManager allows Static relays to a GateManager enabling a cen-tral server or SCADA system to monitor devices real-time, or to allow devices to push status updates back to the central server.

Configurable Routing/Forwarding rules The SiteManager can be configured to port forward or route connec-tions between its Uplink and Device network ports. It can even be used as secure Internet router via an integrated Web proxy.

Optional EasyTunnel™ VPN supportThe SiteManager supports the unique Secomea EasyTunnel VPN con-cept. Enabling the included EasyTunnel Client in the SiteManager, will allow enrollment in a VPN network controlled by a TrustGate concen-trator. EasyTunnel works like ordinary IPSec VPN, but without the need for juggling certificates or keys. Simply enter the serial number of the SiteManager, and it is instantly enrolled in the VPN network.

State-of-the-Art SecurityThe SiteManager solutions are using state-of-the-art security stand-ards. This includes a built-in stateful Inspection Firewall, authentica-tions using x.509 digital certificate and encryption using the strong AES standard with up to 256-bit. The entire solution is Security certified ac-cording to the most current standards of the industry.


Local Access Management and loggingThe SiteManager allows local administered access management via its Web GUI or digital ports, in addition to the central user access manage-ment. On top of this, all user connections made to the SiteManager and its connected devices are logged centrally on the GateManager.

Drivers for any type deviceThe SiteManager has built-in preconfigured drivers “agents” for remote accessing any type of device such as PLCs, HMis, IPCs, Robots, Servos, etc. In addition to this, it is possible to customize an agent for other requirements regardless of it being Serial, Ethernet, WiFi or USB at-tached.

WiFi operation in Client modeApplying the Secomea USB WiFi adapter to the SiteManager will auto-matically enable WiFi Client mode, and the SiteManager will be able to access the Internet via a local access point.

Wake-on-SMSWhen connected via broadband the SiteManager can be configured to enter sleep mode, to prevent consuming data traffic charges when idle. Simply send an SMS to the SiteManager and it will be instantly available.

Fail-over / Fail-back (Wired / Wireless)When enabling both the wired and Wireless Uplink (broadband or op-tional WiFi), the SiteManager can perform fail-over and thereby ensure maximum uptime. By prioritizing the wired uplink, the SiteManager will automatically fail-back to the wired connection, thus reducing con-sumption of broadband data charges.

Flexible Alert notification systemAny SiteManager can be used as gateway for alerts generated by local devices via Ethernet, Serial or digital input triggers, or by the GateMan-ager monitoring status of the SiteManager and local devices. Alerts are administered by the central GateManager from where they can be sent as SMS or Email. In addition all generated alert are centrally logged.

True SMS Gateway - via Serial and EthernetThe serial port of SiteManager 1139 4G and 3339 4G operates as a true SMS modem via the AT command set, and supports both outgoing SMSes generated e.g. by a PLC, as well as incoming SMS queing that a PLC can scan for. Additionally the Ethernet port supports the SMS syntax typically used in Siemens and CoDeSys code blocks for sending SMS messages from a PLC.





4G

Secomea A/S

Denmark


www.secomea.com

Partnumbers Model / Description

30241 SiteManager 1139 4G EU, including 5 Device Agents

30251 SiteManager 1139 4G US, including 5 Device Agents

30231 SiteManager 1139 4G CN, including 5 Device Agents

30242 SiteManager 3339 4G EU, including 25 Device Agents

30252 SiteManager 3339 4G US, including 25 Device Agents

30232 SiteManager 3339 4G CN, including 25 Device Agents

27250 Secomea WiFi USB adapter with SMA adapter for operation as WiFi Client

Doc rev. 2016-01-25


• 536 Mhz ARM Cortex A5 CPU





• Power consumption: max 5W excl. any optional USB device.s (Calculate with a total of 8W incl. USB devices)

• 2 x digital input ports

• 1 x output relay (max 0,5A), 1 x digital output open drain (max 0,2A)

• Integrated broadband modem: - LTE Downlink: 50mbps (10MHz bandwidth) - LTE uplink: 25mbps (10MHz bandwidth)

• 4G/3G/GPRS standard polarity female SMA connector.

4G EU (EMEA) modem specs

• LTE Bands: B1 (2100), B3 (1800). B7 (2600), B8 (900), B20 (800DD), B38 (TDD 2600), B40 (TDD 2300)

• UMTS/HSDPA/HSPA+: B1 (2100), B8 (900)

• GPRS/EDGE: B10 (900), B13 (1800)

• Certifications: CE, GCF (in planning)

4G US (USA) modem specs

• LTE Bands: B2 (1900), B4 (1700/AWS), B5 (850), B17 (700)


• Certifications: FCC, PTCRB, IC, AT&T, Rogers (on going)

4G CN (China) modem specs

• LTE Bands: B1 (FDD 2100), B3 (FDD 1800), B7 (FDD 2600). B38 (TDD 2600), B39 (TDD 1900), B40 (TDD 2300), B41 (TDD 2500)


• TD-SCDMA: B34 (2010-2025), B39 (1800-1920)

• GPRS/EDGE: B10 (900), B13 (1800)

• Certifications: CCC, TA, CTA, NCC

Regulations

• CE (EN 61000-6-2, EN 61000-6-4, EN 301 489-1, EN 301 489-3)

• FCC 47 cfr part 15

• UL Listed (file #E358541, ITE 4ZP8)








• Choice of Uplink (WAN) Internet access: - Ethernet, - WiFi USB Option (IEEE 802.11 b/g/n) - 3G/GPRS

• Choice of Uplink IP-assignment mode: DHCP client, PPPoE client, manual/static


• DHCP server on Device LAN by Ethernet

• USB port for remote accessing USB enabled devices (directly or via USB hub)


• Support for remote access by any UDP/TCP based protocol



• Automatic event logging on GateManager™

• Alert notifications generated by SiteManager or GateManager and sent as email or SMS lo-cally or centralized from the GateManager

• Bi-directional SMS Gateway support via Serial AT commands and UDP/TCP script commands


• Appliance Launcher for easy initial contact and connection to GateManager™

• Configuration and maintenance of SiteManag-er™ via browser (HTTPS/SSL - local or remote from GateManager™)


• Easy configuration with pre-defined configura-tion using a USB stick

• Configuration backup management (via Gate-Manager™ ) including scheduled backup and fast hardware replacement (cold backup)




• 4 LEDs for signalling Power, Status, 3G/GPRS status and LinkManager connection.


• Digital or Relay output for signalling active LinkManager connections, and GateManager connection status.

• Configurable digital input port for custom Email/SMS alert triggering

• Output port for custom toggling from the

SiteManager GUI



4G

• TheSiteManager™itselfanditsmoni-toreddevicesareallcentrallymanagedandaccessiblefromtheGateManagerserver


• Firewallfriendlycommunication,-usesstandardwebprotocols,andonlyinside-out

• NorequirementforpublicorfixedIPaddress.SiteManagerisbydefaultDHCPenabled.Noneedtore-configurethePLCwithgatewayaddressetc.

• Canoperateascarrierofalarms,emailalertsetc.betweendevicesandcentralloggingserversovertheInternet

• Built-infirewall,AESandx.509certifi-catesformaximumsecurity



• IntegratedWiFiforconnectingtotheInternetviaalocalAccessPoint.

• CanoperateasWiFiaccesspointviaSecomeaUSBWiFiadapteroption

• OptionalInternetaccessviaastandard4G/3G/GPRSmodeminstalledintheUSBport

• IncludestheuniqueSecomeaEasyTun-nelClientfeatureforallowingeasyenrollmentinaVPNnetwork

• SecuritycertifiedinaccordancewithleadingstandardsmethodologiesspecifiedbyNIST,ISA/IEC,BSIandISECOM



OPTIONAL

SiteManager™isanoff-the-shelfcomponentintheSecomeaIndustrialCommunicationsSolutionprogramthat incombinationwithSecomea’sGateManager™ and LinkManager™ ensures unified, uninterrupted andsecureaccesstoremotedevices.

SiteManager™ is security certified according to the highest industrystandardsof the industry,performedby the independentsecurityor-ganisation ProtectEM GmbH in Germany in close cooperation with theDeggendorfInstituteofTechnology.

TheSiteManager™ 1149and3349arerobustDINmountableappliancesthatinstallsinthemachinecontrolpanel,andprovidesremoteaccessforon-demandservicingandprogrammingofequipment,concurrentlywithstaticconnectionsformonitoringandlogging.

TheSiteManager™1149and3349provideremoteaccesstoalltypesofindustrialequipmentviaEthernet,-Serial-orUSB,usingtheequipment’snativeprotocols(e.g.Modbus,PROFINET,EtherCAT;EtherNet/IPetc.).

TheSiteManager™1149and3349establishaccesstotheInternetthroughthefirewalloftheexistingwirednetworkinfrastructure,orwirelesslybythe integratedWiFioption.AdditionallytheSiteManagerfeaturesstaticVPNpoweredbytheuniqueSecomeaEasyTunnel™concept.

PLC HMI PC Cam











WiFi operation in both Client and Access Point modeTheSiteManager1149and3349featureabuilt-inWiFimodule,whichcanbeused foraccessing the Internetviaa localaccesspoint.Applyingan external USB adapter will allow operation as an access point forprovidingremoteaccesstoWiFiclientenableddevicesatthelocation.

4G/3G/GPRS Option with Wake-on-SMSTheSiteManager1149and3349featureanoptionalUSBportforattach-inga4G/3G/GPRSadapterforconnectingtotheInternet.Thisfeatureisusefulincaseswherenolocalinfrastructureexistsforconnectingtothe Internet. InadditiontheSiteManagersupportsaWake-on-SMSthatpreventconsumingdatatrafficchargeswheninidlemode.

Fail-over / Fail-back (Wired / Wireless)When enabling both the wired and wireless Uplink (WiFi or optionalbroadbandmodem),theSiteManagercanperformfail-overandthere-byensuremaximumuptime.Byprioritizingthewireduplink,theSite-Managerwillautomaticallyfail-backtothewiredconnection,thusre-ducingconsumptionofbroadbanddatacharges.

Flexible Alert notification systemAnySiteManagercanbeusedasgatewayforalertsgeneratedbylocaldevicesviaEthernet,Serialordigital input triggers,by theGateMan-agermonitoringstatusoftheSiteManagerandlocaldevices.AlertsareadministeredbythecentralGateManagerfromwheretheycanbesentasSMSorEmail.Inadditionallgeneratedalertarecentrallylogged.





Secomea A/S

Denmark


www.secomea.com




27101 SecomeaWiFiUSBadapterforoperationasAccessPoint

27250 SecomeaWiFiUSBadapterwithSMAadapter(foroperationasAccessPoint)


Doc rev. 2015-06-08



• Input12-24V/DC,viascrewterminals






• 1xoutputrelay(max0,5A),1xdigitaloutputopendrain(max0,2A)

• Integrated2.4GHzWiFimoduleforCli-entmode,IEEE802.11b/g/n(APmoderequieresexternalWiFiUSBadapterinstalled)

• WiFiantennaconnector,RP-SMAFemale

Regulations

• CE(EN61000-6-2,EN61000-6-4,EN301489-1,EN301489-3)

• FCC47cfrpart15


• IECcertified(CBcertificatDK-30193-A2-UL)





• DINmountbracket


• 2-yearsWarranty


• ChoiceofUplink(WAN)Internetaccess:-Ethernet-WiFi-Optional3G/4G/GPRSUSBmodem



• DHCPserveronDeviceLANbyEthernetorasaccesspointviaexternalWiFiUSBadapter.







• AlertnotificationsgeneratedbySiteMan-agerorGateManagerandsentasemailorSMS





• Easyconfigurationwithpre-definedcon-figurationusingaUSBstick



• Pre-definedDeviceAgentsforeasysetupofaccesstoallPCs,webdevicesandallcommonPLCsandHMIs


• 4LEDsforsignallingPower,Status,WiFistatusandLinkManagerconnection


• DigitalorRelayoutputforsignallingactiveLinkManagerconnections,andGateManagerconnectionstatus










cure access to remote devices.

SiteManager™ is security certified according to the highest industry stand-

ards of the industry, performed by the independent security organisation


Institute of Technology.

The SiteManager™ 1429 and 3429 are robust DIN mountable appliances that

installs in the machine control panel, and provides remote access for on-

demand servicing and programming of equipment, concurrently with static

connections for monitoring and logging.



native protocols (e.g. Modbus, PROFINET, EtherCAT; EtherNet/IP etc.)

The SiteManager™ 1429 and 3429 establish access to the Internet through

the firewall of the existing wired network infrastructure, or optionally wire-

lessly via a broadband modem or WiFi adapter installed in the USB port.

Additionally the SiteManager features static VPN powered by the unique

Secomea EasyTunnel™ concept.

OPTIONAL

OPTIONAL 3G/4G



• The SiteManager™ itself and its moni-tored devices are all centrally managed and accessible from the GateManager server.



• No requirement for public or fixed IP address. SiteManager is by default DHCP enabled. No need to re-configure the PLC with gateway address etc.


• Built-in firewall, AES and x.509 certifi-cates for maximum security



• Optional 4G/3G/GPRS/3G broadband support by installing a standard USB modem.

• Optional Internet access via the option-al WiFi module installed in the USB port

• Automatic failover between Ethernet Uplink and the optional Wireless Uplink.

• Includes the unique Secomea EasyTun-nel Client feature for allowing easy enrollment in a VPN network.

• Security certified in accordance with leading standards methodologies specified by NIST, ISA/IEC, BSI and ISECOM.

• Built-in 4 port switch, which can be con-figured as 4 different device LANs.



PLC HMI PC Cam











WiFi operation in Client modeBy applying the Secomea USB WiFi adapter, the SiteManager will auto-matically enable WiFi Client mode, and the SiteManager will be able to access the Internet via a local access point.

4G/3G/GPRS Option with Wake-on-SMSThe SiteManager 1429/3429 features an optional USB port for attach-ing a standard 4G/3G/GPRS USB modem for connecting to the Internet. This feature is useful in cases where no local infrastructure exists for connecting to the Internet.

Fail-over / Fail-back (Wired / Wireless)When enabling both the wired and the wireless Uplink option (broad-band or WiFi installed in the USB port), the SiteManager can perform fail-over and thereby ensure maximum uptime. By prioritizing the wired uplink, the SiteManager will automatically fail-back to the wired con-nection, thus reducing consumption of broadband data charges.

Flexible Alert notification systemThe SiteManager can be used as gateway for alerts generated by local devices via Ethernet, Serial or digital input triggers, or by the GateMan-ager monitoring status of the SiteManager and local devices. Alerts are administered by the central GateManager from where they can be sent as SMS or Email. In addition all generated alert are centrally logged.

4 port configurable switchThe SiteManager 1429/3429 features a 4 port switch for the device LAN, which can optionally be configured to represent up to 4 isolated LANs. This ensures that different types of equipment that are not allowed to communicate, will be completely isolated from each other.

Secomea A/S

Denmark


www.secomea.com







Doc rev. 2015-11-20






• Network Interfaces: 5 x 10/100 Mbit Ethernet (UPLINK, DEV1, DEV2, DEV3, DEV4) – RJ45 connection with patch/cross-over cable auto-detection.

• 2 x USB 1.1 full speed (Host).




Regulations

• CE (EN 61000-6-2, EN 61000-6-4, EN 61000-3-2/-3-12, EN 61000-3-3/-3-11)



• IEC CB certified (DK-30193-UL)

• RCM approval








• Choice of Uplink (WAN) Internet access: - Ethernet, - WiFi USB Option (IEEE 802.11 b/g/n) - Broadband USB Option (4G/3G/GPRS)



• DHCP servers on Device LAN by Ethernet

• USB port for remote accessing USB ena-bled devices (directly or via USB hub)



• 4 port managed port switch, configurable for bridging or individual LANs including DHCP Server assigning on each LAN.



• Automatic event logging on GateMan-ager™

• Alert notifications generated by SiteMan-ager or GateManager and sent as email or SMS from the GateManager


• Appliance Launcher for easy initial con-tact and connection to GateManager™



• Easy configuration with pre-defined configuration using a USB stick





• 3 LEDs for signalling Power, Status and LinkManager connection.


• Digital Output port for signalling active LinkManager connections, and GateMan-ager connection status.

• Configurable digital Input port for custom Email/SMS alert triggering

• Digital Output port for custom toggling from the SiteManager GUI



OPTIONAL




cure access to remote devices.

SiteManager™ is security certified according to the highest industry stand-

ards of the industry, performed by the independent security organisation


Institute of Technology.

The SiteManager™ 1439 and 3439 are robust DIN mountable appliances that

installs in the machine control panel, and provides remote access for on-

demand servicing and programming of equipment, concurrently with static

connections for monitoring and logging.



native protocols (e.g. Modbus, PROFINET, EtherCAT; EtherNet/IP etc.)

The SiteManager™ 1439 and 3439 establish access to the Internet through the firewall of the existing wired network infrastructure, or wirelessly by the integrated 3G/GPRS modem. Additionally the SiteManager features static VPN powered by the unique Secomea EasyTunnel™ concept.



• The SiteManager™ itself and its monitored devices are all centrally managed and ac-cessible from the GateManager server.



• No requirement for public or fixed IP ad-dress. SiteManager is by default DHCP enabled. No need to re-configure the PLC with gateway address etc.


• Built-in firewall, AES and x.509 certificates for maximum security



• Built-in SMS modem support on the Serial port and SMS Gateway support on the Eth-ernet port (typically used by Siemens and CoDeSys ready products)

• Integrated GPRS/3G broadband modem for alternative wireless Internet access or failover.

• Optional Internet access via the optional WiFi module installed in the USB port

• Automatic failover between Ethernet Uplink and the optional Wireless Uplink.

• Includes the unique Secomea EasyTunnel Client feature for allowing easy enrollment in a VPN network.

• Security certified in accordance with lead-ing standards methodologies specified by NIST, ISA/IEC, BSI and ISECOM.

• Built-in 4 port switch, which can be config-ured as 4 different device LANs.



PLC HMI PC Cam











WiFi operation in Client modeBy applying the Secomea USB WiFi adapter, the SiteManager will auto-matically enable WiFi Client mode, and the SiteManager will be able to access the Internet via a local access point.

3G/GPRS Wake-on-SMSWhen connected via broadband the SiteManager can be configured to enter sleep mode, to prevent consuming data traffic charges when idle. Simply send an SMS to the SiteManager and it will be instantly available.

Fail-over / Fail-back (Wired / Wireless)When enabling both the wired and Wireless Uplink (broadband or op-tional WiFi), the SiteManager can perform fail-over and thereby ensure maximum uptime. By prioritizing the wired uplink, the SiteManager will automatically fail-back to the wired connection, thus reducing con-sumption of broadband data charges.

Flexible Alert notification systemAny SiteManager can be used as gateway for alerts generated by local devices via Ethernet, Serial or digital input triggers, or by the GateMan-ager monitoring status of the SiteManager and local devices. Alerts are administered by the central GateManager from where they can be sent as SMS or Email. In addition all generated alert are centrally logged.

4 port configurable switchThe SiteManager 1439/3439 features a 4 port switch for the device LAN, which can optionally be configured to represent up to 4 isolated LANs. This ensures that different types of equipment that are not allowed to communicate, will be completely isolated from each other.

Secomea A/S

Denmark


www.secomea.com

Doc rev. 2015-11-20












• Network Interfaces: 5 x 10/100 Mbit Ethernet (UPLINK, DEV1, DEV2, DEV3, DEV4) – RJ45 connection with patch/cross-over cable auto-detection.

• 1 x USB 1.1 full speed (Host).




• Integrated HSPA+ broadband modem sup-porting the frequencies: WCDMA 850/1900/2100 MHz EDGE/GPRS 850/900/1800/1900 MHz

• 3G/GPRS standard polarity female SMA connector.

Regulations

• CE (EN 61000-6-2, EN 61000-6-4, EN 61000-3-2/-3-12, EN 61000-3-3/-3-11)



• IEC CB certified (DK-30193-UL)

• RCM approval








• Choice of Uplink (WAN) Internet access: - Ethernet, - WiFi USB Option (IEEE 802.11 b/g/n) - 3G/GPRS



• DHCP servers on Device LAN by Ethernet

• USB port for remote accessing USB ena-bled devices (directly or via USB hub)



• 4 port managed port switch, configurable for bridging or individual LANs including DHCP Server assigning on each LAN.



• Automatic event logging on GateMan-ager™

• Alert notifications generated by SiteMan-ager or GateManager and sent as email or SMS locally or centralized from the GateManager

• Bi-directional SMS Gateway support via Serial AT commands and UDP/TCP script commands


• Appliance Launcher for easy initial con-tact and connection to GateManager™



• Easy configuration with pre-defined configuration using a USB stick





• 4 LEDs for signalling Power, Status, 3G/GPRS status and LinkManager connec-tion.


• Digital Output port for signalling active LinkManager connections, and GateMan-ager connection status.

• Configurable digital Input port for custom Email/SMS alert triggering

• Digital Output port for custom toggling from the SiteManager GUI

Documents

Secure High-Availability Remote Access to Industrial · PDF fileRemote Management - SiteManager™ 3129 Secure High-Availability Remote Access to Industrial Devices The SiteManager™