Remote maintenance
Unfortunately, there are no instructions for remote service via network or the Internet that are sufficiently general to cover all of the situations that may develop when using a generic device.Basically, one may think of the Internet as divided into two segments: the local network (LAN) and the wide area network (WAN). The LAN and the WAN should both be isolated and protected by passive systems (such as Firewalls).The target system (PLC) should always be protected by at least one Firewall.
The firewall shown in the figure is used to isolate the local network from the Internet. If the local networks are very complex or subject to intense traffic (such as broadcasts), it may be necessary to isolate the PLC from the rest of the local network.Because the PLC in the local network cannot be accessed from the Internet, an engineer has to use specific strategies, such as a VPN set-up or direct connections via modems, to access it remotely.
We advise you to discuss this in detail with your IT system administrator if you need to configure access channels or Firewall rules.Note: for remote connection to our systems, the following ports must be opened to ensure correct functioning of all services:
The firewall shown in the figure is used to isolate the local network from the Internet. If the local networks are very complex or subject to intense traffic (such as broadcasts), it may be necessary to isolate the PLC from the rest of the local network.Because the PLC in the local network cannot be accessed from the Internet, an engineer has to use specific strategies, such as a VPN set-up or direct connections via modems, to access it remotely.
We advise you to discuss this in detail with your IT system administrator if you need to configure access channels or Firewall rules.Note: for remote connection to our systems, the following ports must be opened to ensure correct functioning of all services:| Ports 20 / 21 / 22 | FTP service |
| Port 23 | Telnet |
| Ports 5050 / 502 | Modbus TCP |
| Ports 5500 / 5800 / 5900 | VNC |
| Ports 5001…5010 | HMI & PC Executor |
| Ports 111 / 2345 / 5000 | PLC debug |
| Port 80 | Web server |
| Port 25 | |
| Port 7000 | EtherCAT ide |
| Port 5555 | Euromap 63 |
| Ports 123 / 124 | SNTP |
| Port 1883 | MQTT |
| Port 51234 | OPC-UA |