Engineer1
Member
Hi All,
I have just installed a router to separate our control network and the business network, but there are some PLC's that still have to be accessed via the business network (due to location), my concern is tht after installing the router and connecting to the business network (without any hassles), i started up the SCADA and checked comms from the PLC's on the business network and it was there!
but i tried pinging the SCADA PC from a PC on the business network and i could not. how is it possible that the PLC can just talk to the 192.168. network when it is on the 196.1. network, without telling the router that comms from that specific IP address is allowed?
I was under the impression that i would have to tell the router to allow certain ip addresses to send data to my network, but it seems i do not have to do that, but is it not a security threat?
Help I a confused... this is a D-LInk VPN 804HV router.
I have just installed a router to separate our control network and the business network, but there are some PLC's that still have to be accessed via the business network (due to location), my concern is tht after installing the router and connecting to the business network (without any hassles), i started up the SCADA and checked comms from the PLC's on the business network and it was there!
but i tried pinging the SCADA PC from a PC on the business network and i could not. how is it possible that the PLC can just talk to the 192.168. network when it is on the 196.1. network, without telling the router that comms from that specific IP address is allowed?
I was under the impression that i would have to tell the router to allow certain ip addresses to send data to my network, but it seems i do not have to do that, but is it not a security threat?
Help I a confused... this is a D-LInk VPN 804HV router.