cancel
Showing results for 
Search instead for 
Did you mean: 
SOLVED

NAT to XM42

NAT to XM42

aFouraker
Occasional Contributor

What are the essential ports required to connect to an XM42 through a NAT? I found a security manual that lists a bunch of ports and nearly all of them appear to be essential. Are all of these essential? Link to manual. Relevant info in section 4.13.5. I have a limit of 5 and have tried many variations and none seem to work. 

6 REPLIES 6

CodeShepherd
Community Moderator
Community Moderator

As you already mentioned several ports are essential for several communication to different tools. I will try to get further information about your topic.

Could you describe in more detail your topology? Which data should go from where over what to whom?

Usalas
Long-established Member

Good Morning,

They try to access the XM controller thru a NAT Router. Allen Bradley 1783-NATR.

they will move their machine to another plant but need to have access remotely. They need full access to controller and PLC.

So far they can Ping the controller and access web assistance thru the NAT device. but it fails during authentication when trying to connect thru Indraworks. we tried several ports. some in imaged below

Usalas_0-1712065911936.png

 

 

 

Yvonne_
Established Member

I have no experience with login in to XMxx controls via NAT, but for the older controls (compatible with Indraworks version 12) ports 1200 and 1210 needed to be added to the NAT rules to login to the control. In the manual those ports correspond with the Indralogic gateway. For the XM2x the manual refers to ports 1740-1742 (UDP) and 11740/11741 (TCP) for communication to the gateway - maybe these could work? 

Yvonne__1-1712072708478.png

 

aFouraker
Occasional Contributor

Latest on this, we added the gateway to the controller and were able to ping and establish a connection to the controller. When testing the connection in Indraworks it was all good. However, when trying to go online/login we got the following error after entering our credentials (which work on the local network).

aFouraker_0-1713905751209.png

We could access web assistant remotely amongst other things. There must be some port missing or something else. Again, here are the ports:

aFouraker_1-1713905792827.png

Any ideas on what we could be missing here? 

 

 

Thoomas
Community Moderator
Community Moderator

Is the topic still relevant? Or: How was it solved?
Please also look here: Security Guideline Electric Drive and Controls

INFO @CodeShepherd 

aFouraker
Occasional Contributor

We switched the NAT out for a ctrlX. I think the problem was largely on the Rockwell NAT hardware/building network.

Icon--AD-black-48x48Icon--address-consumer-data-black-48x48Icon--appointment-black-48x48Icon--back-left-black-48x48Icon--calendar-black-48x48Icon--center-alignedIcon--Checkbox-checkIcon--clock-black-48x48Icon--close-black-48x48Icon--compare-black-48x48Icon--confirmation-black-48x48Icon--dealer-details-black-48x48Icon--delete-black-48x48Icon--delivery-black-48x48Icon--down-black-48x48Icon--download-black-48x48Ic-OverlayAlertIcon--externallink-black-48x48Icon-Filledforward-right_adjustedIcon--grid-view-black-48x48IC_gd_Check-Circle170821_Icons_Community170823_Bosch_Icons170823_Bosch_Icons170821_Icons_CommunityIC-logout170821_Icons_Community170825_Bosch_Icons170821_Icons_CommunityIC-shopping-cart2170821_Icons_CommunityIC-upIC_UserIcon--imageIcon--info-i-black-48x48Icon--left-alignedIcon--Less-minimize-black-48x48Icon-FilledIcon--List-Check-grennIcon--List-Check-blackIcon--List-Cross-blackIcon--list-view-mobile-black-48x48Icon--list-view-black-48x48Icon--More-Maximize-black-48x48Icon--my-product-black-48x48Icon--newsletter-black-48x48Icon--payment-black-48x48Icon--print-black-48x48Icon--promotion-black-48x48Icon--registration-black-48x48Icon--Reset-black-48x48Icon--right-alignedshare-circle1Icon--share-black-48x48Icon--shopping-bag-black-48x48Icon-shopping-cartIcon--start-play-black-48x48Icon--store-locator-black-48x48Ic-OverlayAlertIcon--summary-black-48x48tumblrIcon-FilledvineIc-OverlayAlertwhishlist