Siemens Simatic net s7-1500 User manual

CP 1543-1

SIMATIC NET

S7-1500 - Industrial Ethernet

CP 1543-1

Operating Instructions

12/2019

C79000

-G8976-C289-08

Preface

Guide to the documentation

Product overview, functions

Installation, connecting up,

commissioning, operation

Configuration, programming

Diagnostics and upkeep

Technical specifications

Approvals

Siemens AG

Digital Industries

Postfach 48 48

90026 NÜRNBERG

GERMANY

C79000-G8976-C289-08

Ⓟ

12/2019 Subject to change

Legal information

Warning notice system

This manual contains notices you have to observe in order to ensure your personal safety, as well as to prevent

damage to property. The notices referring to your personal safety are highlighted in the manual by a safety alert

symbol, notices referring only to property damage have no safety alert symbol. These notices shown below are

graded according to the degree of danger.

DANGER

indicates that death or severe personal injury will result if proper precautions are not taken.

WARNING

indicates that death or severe personal injury may result if proper precautions are not taken.

CAUTION

indicates that minor personal injury can result if proper precautions are not taken.

NOTICE

indicates that property damage can result if proper precautions are not taken.

If more than one degree of danger is present, the warning notice representing the highest degree of danger will

be used. A notice warning of injury to persons with a safety alert symbol may also include a warning relating to

property damage.

Qualified Personnel

The product/system described in this documentation may be operated only by personnel qualified for the specific

task in accordance with the relevant documentation, in particular its warning notices and safety instructions.

Qualified personnel are those who, based on their training and experience, are capable of identifying risks and

avoiding potential hazards when working with these products/systems.

Proper use of Siemens products

Note the following:

WARNING

Siemens products may only be used for the applications described in the catalog and in the relevant technical

documentation. If products and components from other manufacturers are used, these must be recommended

or approved by Siemens. Proper transport, storage, installation, assembly, commissioning, operation and

maintenance are required to ensure that the products operate safely and without any problems. The permissible

ambient conditions must be complied with. The information in the relevant documentation must be observed.

Trademarks

All names identified by ® are registered trademarks of Siemens AG. The remaining trademarks in this publication

may be trademarks whose use by third parties for their own purposes could violate the rights of the owner.

Disclaimer of Liability

We have reviewed the contents of this publication to ensure consistency with the hardware and software

described. Since variance cannot be precluded entirely, we cannot guarantee full consistency. However, the

information in this publication is reviewed regularly and any necessary corrections are included in subsequent

editions.

CP 1543-1

Operating Instructions, 12/2019, C79000-G8976-C289-08 3

Preface

Article number, validity and product names

This description contains information on the following product:

CP 1543-1

Article number 6GK7 543-1AX00-0XE0

Hardware product version 2

Firmware version V2.2

Communications processor for SIMATIC S7-1500

View of the CP 1543-1

①

LEDs for status and error displays

②

LED displays of the Ethernet interface for connection status and activity

③

Type plate

④

Ethernet port: 1 x 8-pin RJ-45 jack

The padlock icon symbolizes the interface to the external, non-secure subnet.

⑤

Label with MAC address

Figure 1 View of the CP 1543-1 with closed (left) and open (right) front cover

Address label: Unique MAC address preset for the CP

The CP ships with a default MAC address:

Preface

CP 1543-1

4Operating Instructions, 12/2019, C79000-G8976-C289-08

The MAC address is printed on the housing.

If you configure a MAC address (ISO transport connections), we recommend that you use

the MAC address printed on the module for module configuration! This ensures that you

assign a unique MAC address in the subnet!

Purpose of the documentation

This manual supplements the S7-1500 system manual.

With the information in this manual and the system manual, you will be able to commission

the communications processor.

New in this issue

●Firmware version V2.2 with the following new functions:

Support of the virtual interface of the CPU, see section Virtual interface of the CPU

(Page 37).

●New ATEX/IECEx approval

●Editorial revision

Version history

●Firmware version V2.1 with the following new functions:

–Extended security settings using IP routing via the backplane bus, see section IP

routing (Page 36).

●Firmware version V2.0 with the following new functions:

–Secure OUC (Open User Communication) via TCP/IP

–Secure Mail: New system data types (SDTs) for transferring e-mails

Alternative: Non secure transfer via port 25 or secure transfer via port 587

–Operation as FTP server: Access to the SIMATIC memory card of the CPU

–IP routing via the backplane bus

Replaced edition

Edition 05/2017

Current manual release on the Internet

You will find the current version of this manual on the Internet pages of Siemens Industry

Online Support:

Link: (https://support.industry.siemens.com/cs/ww/en/ps/15340/man)

Preface

CP 1543-1

Operating Instructions, 12/2019, C79000-G8976-C289-08 5

Sources of information and other documentation

See section Guide to the documentation (Page 9).

Abbreviations and names

In this document, the following abbreviations are used in place of the full name:

●CP

Used instead of the full product name CP 1543-1

●STEP 7

Used for the configuration tool STEP 7 Professional

License conditions

Note

Open source software

The product contains open source software. Read the license conditions for open source

software carefully before using the product.

You will find license conditions in the following document on the supplied data medium:

●OSS_CP15431_86.pdf

Security information

Siemens provides products and solutions with industrial security functions that support the

secure operation of plants, systems, machines and networks.

In order to protect plants, systems, machines and networks against cyber threats, it is

necessary to implement – and continuously maintain – a holistic, state-of-the-art industrial

security concept. Siemens’ products and solutions constitute one element of such a concept.

Customers are responsible for preventing unauthorized access to their plants, systems,

machines and networks. Such systems, machines and components should only be

connected to an enterprise network or the internet if and to the extent such a connection is

necessary and only when appropriate security measures (e.g. firewalls and/or network

segmentation) are in place.

For additional information on industrial security measures that may be implemented, please

visit

Link: (http://www.siemens.com/industrialsecurity)

Siemens’ products and solutions undergo continuous development to make them more

secure. Siemens strongly recommends that product updates are applied as soon as they are

available and that the latest product versions are used. Use of product versions that are no

longer supported, and failure to apply the latest updates may increase customers’ exposure

to cyber threats.

Preface

CP 1543-1

6Operating Instructions, 12/2019, C79000-G8976-C289-08

To stay informed about product updates, subscribe to the Siemens Industrial Security RSS

Feed under

Link: (http://www.siemens.com/industrialsecurity)

Firmware

The firmware is signed and encrypted. This ensures that only firmware created by Siemens

can be downloaded to the device.

SIMATIC NET glossary

Explanations of many of the specialist terms used in this documentation can be found in the

SIMATIC NET glossary.

You will find the SIMATIC NET glossary on the Internet at the following address:

Link: (https://support.industry.siemens.com/cs/ww/en/view/50305045)

Device defective

If a fault develops, please send the device to your Siemens representative for repair. Repairs

on-site are not possible.

Recycling and disposal

The product is low in pollutants, can be recycled and meets the requirements of the WEEE

directive 2012/19/EU "Waste Electrical and Electronic Equipment".

Do not dispose of the product at public disposal sites. For environmentally friendly recycling

and the disposal of your old device contact a certified disposal company for electronic scrap

or your Siemens contact.

Keep to the local regulations.

You will find information on returning the product on the Internet pages of Siemens Industry

Online Support:

Link: (https://support.industry.siemens.com/cs/ww/en/view/109479891)

CP 1543-1

Operating Instructions, 12/2019, C79000-G8976-C289-08 7

Table of contents

Preface ...................................................................................................................................................... 3

1 Guide to the documentation....................................................................................................................... 9

2 Product overview, functions..................................................................................................................... 11

2.1 Communication services.........................................................................................................11

2.2 Further functions.....................................................................................................................12

2.3 Industrial Ethernet Security.....................................................................................................14

2.4 Configuration limits and performance data.............................................................................15

2.4.1 General characteristic data.....................................................................................................15

2.4.2 Characteristics of S7 communication .....................................................................................17

2.4.3 Characteristic data for FTP / FTPS mode ..............................................................................18

2.4.4 Characteristics security...........................................................................................................18

2.5 Requirements for use..............................................................................................................19

2.5.1 Configuration limits .................................................................................................................19

2.5.2 Project engineering.................................................................................................................19

2.5.3 Program blocks - overview .....................................................................................................20

2.6 LEDs .......................................................................................................................................21

2.7 Gigabit interface......................................................................................................................23

3 Installation, connecting up, commissioning, operation ............................................................................. 25

3.1 Important notes on using the device.......................................................................................25

3.1.1 Notes on use in hazardous areas...........................................................................................25

3.1.2 Notes on use in hazardous areas according to ATEX / IECEx ..............................................26

3.1.3 Notes on use in hazardous areas according to UL HazLoc ...................................................27

3.1.4 General notices on use in hazardous areas according to FM ................................................27

3.2 Installing and commissioning the CP 1543-1 .........................................................................28

3.3 Operating mode of the CPU: Reaction of the CP ...................................................................29

4 Configuration, programming .................................................................................................................... 31

4.1 Security recommendations .....................................................................................................31

4.2 Restricting communications services in the CPU...................................................................34

4.3 Network settings .....................................................................................................................35

4.4 IP configuration.......................................................................................................................36

4.4.1 Points to note about IP configuration......................................................................................36

4.4.2 Restart after detection of a duplicate IP address in the network............................................36

4.4.3 IP routing.................................................................................................................................36

4.4.4 Virtual interface of the CPU ....................................................................................................37

4.4.5 Programmed connections: Restriction of firewall rules...........................................................40

4.5 Time-of-day synchronization...................................................................................................41

Table of contents

CP 1543-1

8Operating Instructions, 12/2019, C79000-G8976-C289-08

4.6 DNS configuration.................................................................................................................. 42

4.7 FTP communication ............................................................................................................... 42

4.7.1 FTP server ............................................................................................................................. 42

4.7.1.1 Configuring the FTP server function ...................................................................................... 42

4.7.2 FTP client ............................................................................................................................... 45

4.7.2.1 The program block FTP_CMD (FTP client function).............................................................. 45

4.7.2.2 Input parameter - FTP_CMD.................................................................................................. 47

4.7.2.3 Job blocks for FTP_CMD ....................................................................................................... 49

4.7.2.4 Output parameters and status information FTP_CMD........................................................... 54

4.7.2.5 Structure of the data block (file DB) for FTP client operation ................................................ 58

4.8 Security .................................................................................................................................. 61

4.8.1 Security user .......................................................................................................................... 61

4.8.2 VPN........................................................................................................................................ 61

4.8.2.1 Creating VPN tunnel communication between S7-1500 stations.......................................... 63

4.8.2.2 Establishment of VPN tunnel communication between the CP and SCALANCE M ............. 65

4.8.2.3 VPN tunnel communication with SOFTNET Security Client.................................................. 65

4.8.2.4 CP as passive subscriber of VPN connections...................................................................... 65

4.8.3 Firewall................................................................................................................................... 66

4.8.3.1 Firewall sequence when checking incoming and outgoing frames........................................ 66

4.8.3.2 Notation for the source IP address (advanced firewall mode)............................................... 66

4.8.3.3 HTTP and HTTPS not possible with IPv6.............................................................................. 66

4.8.3.4 Firewall settings for connections via a VPN tunnel................................................................ 67

4.8.4 Online functions ..................................................................................................................... 67

4.8.4.1 Settings for online security diagnostics and downloading to station with the firewall

activated................................................................................................................................. 67

4.8.4.2 Online security diagnostics via port 8448 .............................................................................. 68

4.8.5 Log settings - Filtering of the system events ......................................................................... 68

4.9 Program blocks for OUC........................................................................................................ 68

5 Diagnostics and upkeep .......................................................................................................................... 71

5.1 Diagnostics options................................................................................................................ 71

5.2 Connect online ....................................................................................................................... 72

5.3 Diagnostics with SNMP.......................................................................................................... 73

5.4 Update firmware..................................................................................................................... 75

5.5 Replacing a module without a programming device.............................................................. 78

6 Technical specifications........................................................................................................................... 79

6.1 Technical specifications of the CP......................................................................................... 79

6.2 Pinout of the Ethernet interface ............................................................................................. 80

6.3 Permitted cable lengths - Ethernet......................................................................................... 80

6.4 Permitted cable lengths - Gigabit Ethernet............................................................................ 80

7 Approvals................................................................................................................................................. 81

Index........................................................................................................................................................ 87

CP 1543-1

Operating Instructions, 12/2019, C79000-G8976-C289-08 9

Guide to the documentation

Documentation for the S7-1500

The documentation of the SIMATIC products has a modular structure and covers topics

relating to your automation system.

The complete documentation for the S7-1500 system consists of a system manual, function

manuals, device manuals or operating instructions.

The STEP 7 information system (online help) also supports you in configuring and

programming your automation system.

The following table shows additional documents that supplement this CP manual and are

available on the Internet.

Table 1- 1 Overview of the documentation for S7-1500

Topic

Documentation

Most important contents

System descrip-

tion

System manual: S7-1500 Automation System

(https://support.industry.siemens.com/cs/ww/e

n/view/59191792)

•Application planning

•Installation

•Connecting

•Commissioning

System diagnos-

tics

Function manual: System diagnostics

(https://support.industry.siemens.com/cs/ww/e

n/view/59192926)

•Overview

•Diagnostics evaluation for

hardware/software

Communication Function manual: Communication

(https://support.industry.siemens.com/cs/ww/e

n/view/59192925)

•Overview

Function manual: Web Server

(https://support.industry.siemens.com/cs/ww/e

n/view/59193560)

•Function

•Operation

SIMATIC NET - Industrial Ethernet /

PROFINET - system manual

•Industrial Ethernet

Link:

(https://support.industry.siemens.com/cs/w

w/de/view/27069465)

•Passive network components

Link:

(https://support.industry.siemens.com/cs/w

w/en/view/84922825)

•Ethernet networks

•Network configuration

•Network components

Guide to the documentation

CP 1543-1

10 Operating Instructions, 12/2019, C79000-G8976-C289-08

Topic

Documentation

Most important contents

Interference-free

installation of

control systems

Function Manual: Interference-free installation

of control systems

(https://support.industry.siemens.com/cs/ww/e

n/view/59193566)

•Basics

•Electromagnetic compatibil-

ity

•Lightning protection

•Housing selection

Cycle and re-

sponse times

Function manual: Cycle and Response Times

(https://support.industry.siemens.com/cs/ww/e

n/view/59193558)

•Basics

•Calculations

CP documentation in the Manual Collection (article number A5E00069051)

The "SIMATIC NET Manual Collection" DVD contains the device manuals and descriptions

of all SIMATIC NET products current at the time it was created. It is updated at regular

intervals.

Version History / Current Downloads for the SIMATIC NET S7 CPs

The "Version History/Current Downloads for SIMATIC NET S7 CPs (Industrial Ethernet)"

document provides information on all CPs available up to now for SIMATIC S7 (Industrial

Ethernet).

The current versions of the document can be found on the Internet:

Link: (https://support.industry.siemens.com/cs/ww/en/view/109474421)

CP 1543-1

Operating Instructions, 12/2019, C79000-G8976-C289-08 11

Product overview, functions

Application

The CP is intended for operation in an S7-1500 automation system. It allows the S7-1500 to

be connected to Industrial Ethernet.

With a combination of different security measures such as firewall and protocols for data

encryption, the CP protects the S7-1500 or even entire automation cells from unauthorized

access. It also protects the communication between the S7 station and communications

partners from spying and manipulation.

2.1 Communication services

The CP supports the following communication services:

●Open User Communication (OUC)

Open User Communication supports the following communications services via the CP

using programmed or configured communications connections:

–ISO transport (complying with ISO/IEC 8073)

–TCP (IPv4/IPv6) (acc. to RFC 793 and 8200)

With the interface via TCPv4/v6 connections, the CP supports the socket interface to

TCP/IP available on practically every end system.

–ISO-on-TCP (acc. to RFC 1006)

–UDP (acc. to RFC 768)

–Multicast over UDP connection

The multicast mode is made possible by selecting a suitable IP address when

configuring connections.

–Sending e-mail via SMTP (port 25) or SMTPS (port 587) with authentication on an e-

mail server.

●S7 communication

–PG communication

–Operator control and monitoring functions (HMI communication)

–Data exchange over S7 connections

Product overview, functions

2.2 Further functions

CP 1543-1

12 Operating Instructions, 12/2019, C79000-G8976-C289-08

●FTP/FTPS

FTP functions (File Transfer Protocol) for file management and access to data blocks in

the CPU

–FTP server

Can be activated via the configuration

–FTP client

Configurable via program blocks.

●FETCH/WRITE

–FETCH/WRITE services as server (corresponding to S5 protocol) via ISO transport,

ISO-on-TCP and TCP connections

The S7-1500 with the CP is always the server (passive connection establishment).

The fetch or write access (client function with active connection establishment) is

performed by a SIMATIC S5 or a third-party device / PC.

2.2 Further functions

Timeofday synchronization over Industrial Ethernet using the NTP mode (NTP: Network Time

Protocol)

The CP sends timeofday queries at regular intervals to an NTP server and synchronizes its

local time of day.

The time is also be forwarded automatically to the CPU modules in the S7 station allowing

the time to be synchronized in the entire S7 station.

Security function: The CP supports the NTP (secure) protocol for secure time-of-day

synchronization and transfer of the time of day.

Addressable with the factoryset MAC address

To assign the IP address to a new CP (direct from the factory), it can be accessed using the

preset MAC address on the interface being used. Online address assignment is made in

STEP 7.

SNMP agent

The CP supports data queries over SNMP in version V1 (Simple Network Management

Protocol). It delivers the content of certain MIB objects according to the MIB II standard and

Automation System MIB.

If security is enabled, the CP supports SNMPv3 for transfer of network analytical information

protected from eavesdropping.

Product overview, functions

2.2 Further functions

CP 1543-1

Operating Instructions, 12/2019, C79000-G8976-C289-08 13

IP configuration - IPv4 and IPv6

The essential features of IP configuration for the CP:

●The CP supports the use of IP addresses according to IPv4 and IPv6.

●You can configure how and with which method the CP is assigned the IP address, the

subnet mask and the address of a gateway.

●The IP configuration and the connection configuration (IPv4) can also be assigned to the

CP by the user program (for program blocks refer to the section Program blocks -

overview (Page 20)).

Note: Does not apply to S7 connections.

IP routing

The CP supports static IP routing (IPv4) to other CM 1542-1 V2.0 / CP 1543-1 V2.0.

For details, see section IP routing (Page 36).

IPv6 addresses - area of use on the CP

An IP address according to IPv6 can be used for the following communications services:

●FETCH/WRITE access (CP is server)

●FTP server mode

●FTP client mode with addressing via program block

●E-mail transfer with addressing via program block

●TCP via OUC blocks with the following SDTs: TCON_QDN, TCON_QDN_SEC

●SNMP

When using IPv6 addresses, make sure to configure the DNS server accordingly.

Access to the Web server of the CPU

Via the LAN interface of the CP, you have access to the Web server of the CPU. With the aid

of the Web server of the CPU, you can read out module data from a station.

Note the special description of the Web server; refer to the section Guide to the

documentation (Page 9)

Note

Web server access using the HTTPS protocol

The Web server of a SIMATIC S7

-1500 station is located in the CPU. For this reason, when

there is secure access (HTTPS) to the Web server of the station using the IP address of the

CP 1543

-1, the SSL certificate of the CPU is displayed.

Product overview, functions

2.3 Industrial Ethernet Security

CP 1543-1

14 Operating Instructions, 12/2019, C79000-G8976-C289-08

S5/S7 addressing mode for FETCH/WRITE

The addressing mode can be configured for FETCH/WRITE access as S7 or S5 addressing

mode. The addressing mode specifies how the position of the start address is identified

during data access (S7 addressing mode applies only to data blocks / DBs).

Read the additional information in the online help of STEP 7.

2.3 Industrial Ethernet Security

All-round protection - the task of Industrial Ethernet Security

With Industrial Ethernet Security, individual devices, automation cells or network segments

of an Ethernet network can be protected. The data transfer from the external network

connected to the CP can be protected by various security measures:

●Data espionage (FTPS, HTTPS)

●Data manipulation

●Unauthorized access

Secure underlying networks can be operated via additional Ethernet/PROFINET interfaces

implemented by the CPU or additional CPs.

Security functions of the CP for the S7-1500 station

As result of using the CP, the following security functions are accessible to the S7-1500

station on the interface to the external network:

●Firewall

–IP firewall with stateful packet inspection (Layer 3 and 4)

–Firewall also for non-IP frames according to IEEE 802.3 (Layer 2)

–Limitation of the transmission speed

–Global and user-specific firewall rules

The protective function of the firewall can be applied to the operation of single devices or

several devices, as well as entire network segments.

●Logging

To allow monitoring, events can be stored in log files that can be read out using STEP 7

or can be sent automatically to a Syslog server.

●FTPS (explicit mode)

For encrypted transfer of files.

●NTP (secure)

For secure time-of-day synchronization

Product overview, functions

2.4 Configuration limits and performance data

CP 1543-1

Operating Instructions, 12/2019, C79000-G8976-C289-08 15

●SMTPS

Foe secure transfer of e-mails via port 587

●SNMPv3

For secure transmission of network analysis information safe from eavesdropping

Observe the information in section Security recommendations (Page 31).

2.4 Configuration limits and performance data

2.4.1 General characteristic data

Characteristic

Explanation / values

Total number of freely usable connections on Industrial

Ethernet

118

The value applies to the total number of connections of the

following types:

•S7 connections

•Connections for open communications services

•FTP (FTP client)

Note

Connection resources of the CPU

Depending on the CPU type, different numbers of connection

resources are available. The

number of connection resources is the decisive factor for the number of configurable

connections. This means that the values that can actually be achieved may be lower than

specified in this section describing the CP.

Open User Communication (OUC) provides access to communication over TCP, ISO-on-

TCP, ISO transport and UDP connections.

Product overview, functions

2.4 Configuration limits and performance data

CP 1543-1

16 Operating Instructions, 12/2019, C79000-G8976-C289-08

The following characteristics are important (OUC + FETCH/WRITE):

Characteristic

Explanation / values

Number of connections Number of configured and programmed connections (ISO transport +

ISO-on-TCP + TCP + UDP + FETCH/WRITE + e-mail):

•Max. 118 in total

Of which maximum:

–TCP connections: 0...118

–ISO-on-TCP connections: 0...118

–ISO transport connections: 0...118

–UDP connections (specified and free) in total: 0...118

–Connection for e-mail: 0...1

–Connections for FETCH/WRITE: 0...16

Maximum data length for program blocks Program blocks allow the transfer of user data in the following lengths:

•ISO-on-TCP, TCP, ISO transport: 1 to 64 kB

•UDP: 1 byte to 2 KB

•E-mail

–Job header + user data: 1 to 256 bytes

–E-mail attachment: up to 64 kB

LAN interface max. data field length generat-

ed by CP per protocol data unit (TPDU =

transport protocol data unit)

•sending

ISO transport, ISOonTCP, TCP: 1452 bytes / TPDU

•receiving

–ISO transport: 512 bytes / TPDU

–ISO-on-TCP: 1452 bytes / TPDU

–TCP: 1452 bytes / TPDU

Note

Connection resources of the CPU

Depending on the CPU type, different numbers of connection resources are available. The

number of connection resources is the decisive factor for the number of configurable

connections. This means that the values that can actually be achieved may be lower

than

specified in this section describing the CP.

You will find detailed information on the topic of connection resources in the

"Communication" function manual, refer to the section

Guide to the documentation (Page 9).

Product overview, functions

2.4 Configuration limits and performance data

CP 1543-1

Operating Instructions, 12/2019, C79000-G8976-C289-08 17

Restrictions for UDP

●Restrictions UDP broadcast / multicast

To avoid overloading the CP due to high broadcast / multicast frame traffic, the receipt of

UDP broadcast / multicast on the CP is limited.

●UDP frame buffering

Length of the frame buffer: At least 7360 bytes

Following a buffer overflow, newly arriving frames that are not fetched by the user

program are discarded.

2.4.2 Characteristics of S7 communication

S7 communication provides data transfer via the ISO Transport or ISO-on-TCP protocols.

Characteristic

Explanation / values

Total number of freely usable S7 connections on

Industrial Ethernet

Max. 118

LAN interface - data field length generated by CP

per protocol data unit (PDU = protocol data unit)

•For sending: 480 bytes / PDU

•For receiving: 480 bytes / PDU

Number of reservable OP connections *

Max. 4

Number of reservable PG connections

Max. 4

Number of HTTP connections for Web

Max. 4

The CPU reserves connection resources. Take the specified values into account for programmed

connections also.

Note

Maximum values for an S7-1500 station

Depending on the CPU you are using, there are limit values for the S7

1500 station. Note the

information in the relevant documentation.

Product overview, functions

2.4 Configuration limits and performance data

CP 1543-1

18 Operating Instructions, 12/2019, C79000-G8976-C289-08

2.4.3 Characteristic data for FTP / FTPS mode

TCP connections for FTP

FTP actions are transferred from the CP over TCP connections. The following characteristics

apply:

●FTP client mode

You can use a maximum of 32 FTP sessions.

Up to 2 TCP connections are occupied per activated FTP session (1 control connection

and 1 data connection).

●FTP server mode

You can operate a maximum of 16 FTP sessions at the same time.

Up to 2 TCP connections are occupied per activated FTP session (1 control connection

and 1 data connection).

Program block FTP_CMD for FTP client mode

For communication, use the program block FTP_CMD.

The block execution time in FTP depends on the reaction times of the partner and the length

of the user data. A generally valid statement is therefore not possible.

2.4.4 Characteristics security

IPsec tunnel (VPN)

VPN tunnel communication allows the establishment of secure IPsec tunnel communication

with one or more security modules.

Configuration limits

Value

Number of IPsec tunnels

16 maximum

Firewall rules (advanced firewall mode)

The maximum number of firewall rules in advanced firewall mode is limited to 256.

The firewall rules are divided up as follows:

●Maximum 226 rules with individual addresses

●Maximum 30 rules with address ranges or network addresses

(e.g. 140.90.120.1 - 140.90.120.20 or 140.90.120.0/16)

●Maximum 128 rules with limitation of the transmission speed ("bandwidth limitation")

Product overview, functions

2.5 Requirements for use

CP 1543-1

Operating Instructions, 12/2019, C79000-G8976-C289-08 19

2.5 Requirements for use

2.5.1 Configuration limits

When using the CP type described here, the following limits apply:

●The number of CPs that can be operated in a rack depends on the CPU type being used.

By operating several CPs, you can increase the configuration limits listed below for the

station as the whole. The CPU does, however, have set limits for the entire configuration.

The size of the configuration made available by a CP can be increased by using more

than one CP within the framework of the system limits.

Observe the information in the documentation on the CPU; see section Guide to the

documentation (Page 9)

Note

Power supply via the CPU adequate or additional power supply modules required

You can operate a certain number of modules in the S7

-1500 station without an

additional power supply. Make sure that you keep to the specif

ied power feed to the

backplane bus for the particular CPU type. Depending on the configuration of the S7

1500 station you may need to provide additional power supply modules.

2.5.2 Project engineering

Configuration and downloading the configuration data

When the configuration data is downloaded to the CPU, the CP is supplied with the relevant

configuration. The configuration data can be downloaded to the CPU via a memory card or

any Ethernet/PROFINET interface of the S7-1500 station.

The following version of STEP 7 is required:

STEP 7 version

Functions of the CP

STEP 7 Professional V12 SP1 or higher The full functionality of the CP 1543-1

(6GK7 543-1AX00-0XE0) can be configured.

Product overview, functions

2.5 Requirements for use

CP 1543-1

20 Operating Instructions, 12/2019, C79000-G8976-C289-08

2.5.3 Program blocks - overview

Program blocks - overview

The following program blocks (instructions) are available for the CP.

Table 2- 1 Blocks of the Open User Communication

Protocol

Program block (instruction)

System data type

TCP •TSEND_C/TRCV_C

•TCON/TDISCON +

TSEND/TRCV

•TCON_IP_v4

•TCON_QDN

•TCON_QDN_SEC

•TCON_Configured

ISO-on-TCP •TCON_IP_RFC

ISO •TCON_ISOnative

UDP •TCON/TDISCON +

TUSEND/TURCV

•TCON_IP_v4

E-mail •TMAIL_C •TMAIL_V4

•TMAIL_QDN

•TMAIL_QDN_SEC

•TMAIL_V6

•TMAIL_V6_SEC

Table 2- 2 Block for communication services of the CP

Protocol

Program block (instruction)

System data type

FTP •FTP_CMD •FTP_CONNECT_IPV4

•FTP_CONNECT_IPV6

•FTP_CONNECT_NAME

•FTP_FILENAME

•FTP_FILENAME_PART

Table 2- 3 Block for configuration of the Ethernet interface or an NTP/DNS server

Function

Program block (instruction)

System data type

Configuration of the Ethernet

interface

•T_CONFIG •IF_CONF_V4

•IF_CONF_V6

•IF_CONF_NTP

•IF_CONF_DNS

•IF_CONF_MAC

Other manuals for SIMATIC NET S7-1500

This manual suits for next models

Table of contents

Other Siemens Network Hardware manuals

Siemens

Siemens SIVACON 8PS BD2 Series User manual

Siemens

Siemens RUGGEDCOM RX1511 User manual

Siemens

Siemens PROFIBUS DP-V1 User manual

Siemens

Siemens RUGGEDCOM WIN5237 User manual

Siemens

Siemens SIMATIC NET PROFIBUS User manual

Siemens

Siemens SIMATIC NET User manual

Siemens

Siemens SANTIS-ab User manual

Siemens

Siemens SINUMERIK 840Di sl Parts list manual

Siemens

Siemens XT55 AVL User manual

Siemens

Siemens Simatic S7-400 User manual

Siemens

Siemens 2000592-001 User manual

Siemens

Siemens HiPath 3000 User manual

Siemens

Siemens RUGGEDCOM WIN5114-V-GPS User manual

Siemens

Siemens SIMATIC NET SCALANCE W774-1 User manual

Siemens

Siemens 3VL9800-8CA30 User manual

Siemens

Siemens SIMATIC NET RUGGEDCOM RX1536 User manual

Siemens

Siemens RUGGEDCOM WIN7251 User manual

Siemens

Siemens RUGGEDCOM RX1400 User manual

Siemens

Siemens RUGGEDCOM WIN5237-IS User manual

Siemens

Siemens SIMATIC IPC427E User manual

Siemens

Siemens ISI EN 50295 User manual

Siemens

Siemens Connect Box User manual

Siemens

Siemens SICAM SGU 7XV5676 User manual

Siemens

Siemens ESM User manual

Popular Network Hardware manuals by other brands

Panasonic

Panasonic Schottky Barrier Diodes MA24D70 Specifications

MikroTik

MikroTik CRS518-16XS-2XQ-RM quick guide

APM

APM ALINE-8110 Specification sheet

IEI Technology

IEI Technology PulM Series Quick installation guide

Panasonic

Panasonic Transistors 2SC3936G Specification sheet

Positron

Positron G1001-MP Self-installation guide

H3C

H3C WA2620X-AGNP installation guide

Network Instruments

Network Instruments 10/100 Full-Duplex Specification manual

Video Products

Video Products RJ45-5EWTP-QR-PCB Operation manual

Vitrum

Vitrum RailZ-4M user manual

Richardson RFPD

Richardson RFPD RadioCarbon RFPD-RC-4450-50 quick start guide

Huawei

Huawei RT-FIC-16ASE Specifications

Crestron

Crestron 8 Channel Dimmer Module CLX-1DIM8 Specification sheet

MikroTik

MikroTik CCR1009-7G-1C-1S+ manual

Bosch

Bosch DIVAR IP all-in-one 6000 user manual

Solstice

Solstice SLS-ENVR2016 Series Quick setup guide

Patton electronics

Patton electronics OnSite 1052 Series quick start guide

Valcom

Valcom V-425 Series Technical Manual and Installation Instructions

Siemens SIMATIC NET S7-1500 User manual

Popular Network Hardware manuals by other brands