Beruflich Dokumente
Kultur Dokumente
RUGGEDCOM RS910
2-port Serial Device Server With up to 3 Ports Managed Ethernet Switch,
128-bit Encryption
The RUGGEDCOM RS910 from Siemens is a utility grade serial The embedded Rugged Operating System (ROS) provides
device server with an integrated, fully managed, Ethernet advanced cyber security features and comprehensive
switch, designed to operate reliably in electrically harsh and networking functions such as Enhanced Rapid Spanning
climatically demanding environments. The RS910 can be Tree (eRSTP), Port Rate Limiting, and a full array of intelligent
configured with 2 serial ports (RS485/RS422/RS232) and/or functionality for high network availability and manageability.
up to 3 Ethernet ports (copper or fiber) and is able to Coupled with ruggedness and durability that is designed in
interconnect multiple types of intelligent electronic devices from the onset, the RS910 is ideal for creating mission critical,
(IEDs) that have different methods of communications. real-time, control applications where high reliability and
Using the RS910 results in fewer connectivity devices (which availability is of paramount importance.
reduces overall system costs) and also extends the useful life
of existing legacy IEDs (which minimizes capital expenditure All RUGGEDCOM products are backed by a five year warranty
for new equipment). and unsurpassed technical support.
usa.siemens.com/ruggedcom
Features and Benefits
Serial Device Server - Exceeds IEC 61800-3 (variable speed drive systems)
■ Transmit serial data over an IP network - Exceeds IEC 61000-6-2 (generic industrial)
■ 2 serial port interfaces - Exceeds NEMA TS-2 (traffic control equipment)
■ RS485/RS422/RS232 (DB9 or RJ45 connectors). ■ -40 to +85°C operating temperature (no fans)
■ Serial fiber interface (ST) option ■ 20 AWG galvanized steel enclosure
■ Support for Modbus TCP, DNP 3, TIN serial protocols ■ DIN or panel mounting options provide secure
■ Baud rates up to 230 kbps mechanical reliability
■ Raw socket mode allows conversion of any serial protocol ■ HazLoc Class 1, Division 2
■ Point-to-point and multi-point modes
■ Converts Modbus RTU to Modbus; Multiple Modbus Rugged Operating System (ROS) Features
masters ■ Simple plug and play operation - automatic learning,
■ Converts DNP3.0 to DNP over UDP/TCP negotiation, and crossover detection
■ MSTP (802.1Q - 2005, formerly 802.1s)
Ethernet Ports ■ RSTP (802.1D-2004) and Enhanced Rapid Spanning Tree
■ Integrated fully managed Ethernet switch (eRSTP) network fault recovery (<5ms)
■ Up to 3 fast Ethernet ports (copper and/or fiber) ■ Quality of Service (802.1p) for real-time traffic
■ Supports many types of fiber (multimode, singlemode) ■ VLAN (802.1Q) with double tagging and GVRP support
■ Multiple connector types (ST, MTRJ, LC, SC) ■ Link aggregation (802.3ad)
■ IGMP snooping for multicast filtering
Cyber Security Features
■ Port rate limiting and broadcast storm limiting
■ Multi-level user passwords
■ Port configuration, status, statistics, mirroring, security
■ SSH/SSL/SFTP (128-bit encryption)
■ SNTP time synchronization (client and server)
■ Enable/disable ports, MAC based port security
■ Port based network access control (802.1x)
■ VLAN (802.1Q) to segregate and secure network traffic
Universal Power Supply Options
■ Fully integrated power supply (no external adaptors)
■ RADIUS centralized password management
■ Popular low-voltage DC ranges: 24VDC (10-36VDC) or
■ SNMPv3 authentication and 56-bit encryption
48VDC (36-72VDC)
Rugged Rated for Reliability in Harsh ■ Universal high-voltage range: 88-300VDC or 85-264VAC
Environments ■ CSA/UL 60950 safety approved to +85°C
■ Immunity to EMI and heavy electrical surges ■ Screw connection terminal blocks ensure reliable
- Meets IEEE 1613 (electrical utility substations) maintenance free connections
- Exceeds IEEE 61850-3 (electrical utility substations)
2 RUGGEDCOM RS910 2-port Serial Device Server With up to 3 Ports Managed Ethernet Switch, 128-bit Encryption
RUGGEDCOM RS910L
Rugged Construction
20 AWG. galvanized
steel enclosure
Fast Ethernet Ports Conformal coating
Up to 3 Fast Ethernet Ports (optional)
10/100BaseTX or 100BaseFX
Multiple fiber connector types
Integrated Power
Supply
Universal high-voltage
range:
88-300V DC or
85-264VAC
Popular low voltage
DC ranges:
Serial Ports 24VDC (10-36V DC),
2 RS485/RS422/RS232 48VDC (36-72VDC)
DB9 or RJ45 Dual Isolated DC
Up to 230kbps power inputs
Serial Fiber Interface Option
2-port Serial Device Server With up to 3 Ports Managed Ethernet Switch, 128-bit Encryption RUGGEDCOM RS910 3
ROS Features
Serial IP Encapsulation ■ Point to Point (PPP) – using CHAP (MD5 Hash)
Many ‘legacy’ devices (RTU, PLC, IED, etc.) only support authentication service
serial communications via RS232, RS422 or RS485. ROS ■ SFTP – Secure File Transfer Protocol using SSH encryption
encapsulates the serial data within a TCP connection
allowing these devices to be reached via an IP network. The ROS cyber security features are included to help address
A wide range of baud rates, frame packetization options, the various industry specific security standards such as
and diagnostics allows any serial protocol to function. NERC CIP, ISA S99, AGA 12, IEC 62443, ISO 17799:2005
The RS910 has specific support for the following and PCSRF SPP-ICS.
serial protocols:
■ Raw socket serial encapsulation Enhanced Rapid Spanning Tree Protocol
■ Modbus TCP (client and server) (eRSTP)
■ DNP 3 RUGGEDCOM eRSTP allows the creation of fault-tolerant
■ WIN and TIN ring and mesh Ethernet networks that incorporate
■ Microlok redundant links that are ‘pruned’ to prevent loops. eRSTP
yields worst-case fault recovery 1 of 5ms times the ‘bridge
MODBUS TCP diameter’ and allows rings of up to 160 switches. For
The Modbus protocol is ubiquitous in the industrial control example, a ring of ten switches will have fault recovery
and automation world. ROS converts Modbus RTU master/ times under 50ms. eRSTP implements both STP and
slave serial data packets to Modbus TCP client/server RSTP to ensure interoperability with commercial switches
packets for transmission over an IP network. This allows unlike other proprietary ‘ring’ solutions.
communications to Modbus RTU slaves via Ethernet and
allows multiple masters to poll the same slave device. Quality of Service (IEEE 802.1p)
Some networking applications such as real-time control
Cyber Security or VoIP (voice over IP) require predictable arrival times for
Cyber security is an urgent issue in many industries where Ethernet frames. Switches can introduce latency in times
advanced automation and communications networks play of heavy network traffic due to the internal queues that
a crucial role in mission critical applications and where high buffer frames and then transmit on a first come first serve
reliability is of paramount importance. Key ROS features that basis. ROS supports ‘Class of Service’ in accordance with
address security issues at the local area network IEEE 802.1p that allows time critical traffic to jump ahead
level include: to the front of the queue thus minimizing latency and
reducing jitter to allow such demanding applications to
■ Passwords – Multi-level user passwords secures switch
operate correctly. ROS allows priority classification by
against unauthorized configuration
port, tags, MAC address, and IP type of service (ToS). A
■ SSH / SSL – Extends capability of password protection configurable “weighted fair queuing” algorithm controls
to add 128-bit encryption of passwords and data as they how frames are emptied from the queues.
cross the network
■ Enable/Disable ports – Capability to disable ports so VLAN (IEEE 802.1Q)
that traffic can not pass Virtual local area networks (VLAN) allow the segregation
■ 802.1Q VLAN – Provides the ability to logically segregate of a physical network into separate logical networks with
traffic between predefined ports on switches independent broadcast domains. A measure of security is
■ MAC based port security – The ability to secure ports provided since hosts can only access other hosts on the
on a switch so only specific Devices / MAC addresses same VLAN and traffic storms are isolated. ROS supports
can communicate via that port 802.1Q tagged Ethernet frames and VLAN trunks. Port
■ 802.1x port based network access control – The ability based classification allows legacy devices to be assigned
to lock down ports on a switch so that only authorized to the correct VLAN. GVRP support is also provided to
clients can communicate via this port simplify the configuration of the switches on the VLAN.
■ RADIUS – authentication service using MD5 hash and
providing centralized password management Link Aggregation (802.3ad)
■ SNMPv3 – encrypted authentication access security and The link aggregation feature provides the ability to
data encryption (CBC-DES with 56-bit encryption key) aggregate several Ethernet ports into one logical link (port
trunk) with higher bandwidth. This provides an inexpensive
■ Secure socket layer – Web-based management using
way to set up a high speed backbone to improve network
SSL with data encryption (128-bit encryption key)
bandwidth. This feature is also known as “port trunking,”
■ RSA – 1024 bit key for key management and key exchange “port bundling,” “port teaming,” and “Ethernet trunk.”
■ TACACS+ – Terminal Access Control and Accounting
Services. Client provides encrypted authentication 1 eRSTP fault recovery times may be approximated as follows:
and authorization For 100 Mbps, fault recovery performance is <5ms/hop
For 1,000 Mbps, fault recovery performance is <5ms/hop + 20ms
4 RUGGEDCOM RS910 2-port Serial Device Server With up to 3 Ports Managed Ethernet Switch, 128-bit Encryption
ROS Features
IGMP Snooping Broadcast Storm Filtering
ROS uses IGMP snooping (Internet Group Management Broadcast storms wreak havoc on a network and can cause
Protocol v1&v2) to intelligently forward or filter multicast traffic attached devices to malfunction. This could be disastrous on
streams (e.g. MPEG video) to or from hosts on the network. a network with mission critical equipment. ROS limits this by
This reduces the load on network trunks and prevents packets filtering broadcast frames with a user-defined threshold.
from being received on hosts that are not involved. ROS has a
very powerful implementation of IGMP snooping that: Port Mirroring
■ Can be enabled on a per VLAN basis ROS can be configured to duplicate all traffic on one port
to a designated mirror port. When combined with a network
■ Detects and filters all multicast streams regardless of
analyzer, this can be a powerful troubleshooting tool. Port-
whether subscribers exist
Configuration and Status ROS allows individual ports to be
■ Supports “router-less” operation by supporting an
‘hard’ configured for speed, duplex, auto-negotiation, flow
“active” mode
control and more. This allows proper connection with devices
■ Restores traffic streams immediately after an RSTP that do not negotiate or have unusual settings. Detailed
topology change |status of ports with alarm and SNMP trap on link problems
aid greatly in system troubleshooting.
SNMP (Simple Network Management Protocol)
SNMP provides a standardized method for network Port Statistics and RMON (Remote Monitoring)
management stations the ability to interrogate devices from ROS provides continuously updating statistics per port that
different vendors. SNMPv3 in particular provides security provide both ingress and egress packet and byte counters as
features such as authentication, privacy with data encryption well as detailed error figures. Also provided is full support
(CBC-DES with 56-bit encryption key) and access control not for the RMON statistics, history, alarms, and event groups.
present in earlier SNMP versions. ROS also supports numerous RMON allows for very sophisticated data collection, analysis
standard MIBs (Management Information Base) allowing and detection of traffic patterns.
for easy integration with any network management system
(NMS). A feature of SNMP supported by ROS is the ability Event Logging and Alarms
to generate “traps” upon system events. RUGGEDCOM NMS, ROS records all significant events to a non-volatile system
the RUGGEDCOM management solution, can record traps log allowing forensic troubleshooting. Events include link
from multiple devices providing a powerful network trouble- failure and recovery, unauthorized access, broadcast storm
shooting tool. It also provides a graphical visualization of the detection, and self-test diagnostics among others. Alarms
network and is fully integrated with all RUGGEDCOM products. provide a snapshot of recent events that have yet to be
acknowledged by the network administrator. An external
SCADA and Industrial Automation
hardware relay is de-energized during the presence of critical
ROS contains features that optimize network performance
alarms allowing an external controller to react if desired.
and simplify switch management based on the unique
requirements found in SCADA and industrial automation HTML Web Browser and Telnet/SSH User
applications. Features such as Modbus TCP management Interfaces
for retrieval of switch data using the ubiquitous Modbus ROS provides a simple, intuitive user interface for configuration
protocol and DHCP Option 82, a Rockwell Automation ODVA and monitoring via a standard graphical web browser or via
requirement for IP address assignment based on the location Telnet/SSH. All system parameters include detailed on-line
of the end device, provide capabilities not found in typical help to make setup a breeze. ROS, presents a common look
“commercial” or “office grade” Ethernet switches. and feel and standardized configuration process allowing
easy migration to other RUGGEDCOM managed products.
Port Based Network Access Control (802.1x)
ROS supports the IEEE 802.1x standard that defines a Configuration Via ASCII Text File
mechanism for port-based network access control which All configuration parameters are stored in an ASCII formatted
provides a means of authenticating and authorizing text file that can easily be transferred via SFTP, TFTP, or
devices attached to LAN ports. Xmodem. The configuration file can be saved for backup
purposes and easily manipulated by a text editor. The same
Port Rate Limiting
text file can be downloaded to the switch at a later date in
ROS supports configurable rate limiting per port to limit
order to re-configure or restore a previous configuration.
unicast and multicast traffic. This can be essential to managing
precious network bandwidth for service providers. It also Command Line Interface (CLI)
provides edge security for denial of service (DoS) attacks. A command line interface can be used in conjunction with
remote shell to automate data retrieval, configuration
updates, and firmware upgrades. A powerful SQL-like
capability allows expert users the ability to selectively retrieve
or manipulate any parameters the device has to offer.
2-port Serial Device Server With up to 3 Ports Managed Ethernet Switch, 128-bit Encryption RUGGEDCOM RS910 5
EMI and Environmental Type Tests
NEMA TS-2 Requirements
Test Description Levels Performance Criteria
Temperature:
TS-2 1998, Section 2, para 2.2.7.3 89.0V AC @ -34°C
Low temperature/Low voltage
Temperature:
TS-2 1998, Section 2, para 2.2.7.4 135.0V AC @ -34°C EUT continued to function properly
Low temperature/High voltage
during and following all temperature
Temperature: and humidity testing.
TS-2 1998, Section 2, para 2.2.7.5 135.0V AC @ + 75°C
High temperature/High voltage
Temperature:
TS-2 1998, Section 2, para 2.2.7.6 89.0V AC @ + 75°C
High temperature/Low voltage
0.5g @ 30Hz for 1hr on all EUT functioned properly following
TS-2 1998, Section 2 para. 2.2.8.4 Vibration endurance test
three planes test procedure. No physical damage.
+/-10g half sine wave for EUT functioned properly following
TS-2 1998, Section 2, para 2.1.10 Mechanical shock
11msec on all three planes test procedure. No physical damage.
Electrical transients: One +/-300VDC pulse every other EUT functioned properly following
TS-2 1992, Section 2, para. 2.1.6.1 High repetition noise cycle once every 3 seconds across test procedure. No physical damage.
(AC terminals) 360 ° of line cycle (2500W peak)
Electrical transients: One +/-600VDC pulse every second, EUT functioned properly following
TS-2 1998, Section 2 para. 2.1.6.2 Low-repetition high energy randomly distributed across 360 ° test procedure. No physical damage.
(AC terminals) of line cycle. Ten pulses total.
Electrical transients: I/O One +/-300VDC pulse every EUT functioned properly following
TS-2 1998, Section 2, para 2.1.7
terminals second, minimum 5 pulses per port test procedure. No physical damage.
Electrical transients: One +/-1000VDC pulse every two EUT functioned properly following
TS-2 1992, Section 2, para. 2.1.8 Nondestruct transient seconds, 3 per each polarity. test procedure. No physical damage.
immunity (AC terminals)
6 RUGGEDCOM RS910 2-port Serial Device Server With up to 3 Ports Managed Ethernet Switch, 128-bit Encryption
Technical Specification
Power Supply EMI Immunity and Environmental Compliance
■ Power consumption: 10W max ■ IEC 61000-6-2 Industrial (Generic)
■ 24VDC: 10-36VDC, 0.4A ■ IEC 61800-3 Industrial (Variable Speed Drive Systems)
■ 48VDC: 36-72VDC, 0.2A ■ IEC 61850-3 Electric Utility Substations
■ HI voltage AC/DC: 88-300VDC, 85-264VAC, 0.1A ■ IEEE 1613 Electric Utility Substations
■ NEMA TS 2 Traffic Control Equipment
Critical Alarm Relay ■ Hazardous Locations: Class 1, Division 2
■ Form-C failsafe contact relay:
1A@30VDC IEEE Compliance
■ 802.3-10BaseT
Physical Dimensions ■ 802.3u-100BaseTX, 100BaseFX
■ Height: 7.4” (188mm) ■ 802.3x-Flow Control
■ Width: 2.6” (66mm) ■ 802.3z-1000BaseLX
■ Depth: 5.0” (127mm) ■ 802.3ab-1000BaseTX
■ Weight: 2.7 lbs ■ 802.3ad-Link Aggregation
■ Ingress protection: IP40 (1mm objects) ■ 802.1D-MAC Bridges
■ Enclosure: 20 AWG galvanized steel enclosure ■ 802.1D-Spanning Tree Protocol
■ Mounting: DIN rail or panel mounted ■ 802.1p-Class of Service
Switch Properties ■ 802.1Q-VLAN Tagging
■ Switching method: Store and forward ■ 802.1D-2004-Rapid Spanning Tree Protocol
■ Switching latency: 8 us (100Mbps) ■ 802.1x-Port Based Network Access Control
■ Switching bandwidth: 1.8 Gbps ■ 802.1Q-2005 (formerly 802.1s) MSTP
■ MAC address table size: 16kbytes IETF RFC Compliance
■ Priority queues: 4 ■ RFC768-UDP
■ Frame buffer memory: 1 Mbit ■ RFC783-TFTP
■ Simultaneous VLANs: 255 ■ RFC791-IP
■ VLAN ID range: 1 to 4094 ■ RFC792-ICMP
■ IGMP and static multicast groups: 256 ■ RFC793-TCP
■ Port rate limiting: 128kbps, 256, 512, 4, 8Mbps ■ RFC826-ARP
■ No head of line blocking ■ RFC854-Telnet
Regulatory Approvals ■ RFC894-IP over Ethernet
■ ISO: Designed and manufactured using a ISO9001: ■ RFC1112-IGMP v1
2000 certified quality program ■ RFC1519-CIDR
■ CE marking ■ RFC1541-DHCP (client)
■ Emissions: FCC Part 15 (Class A), EN55022 (CISPR22 Class A) ■ RFC2030-SNTP
■ Safety: cCSAus (Compliant with CSA C22.2 No. 60950, ■ RFC2068-HTTP
UL 60950, EN60950) ■ RFC2236-IGMP v2
■ Laser eye safety (FDA/CDRH): Complies with 21 CFR ■ RFC2284-EAP
Chapter 1, Subchapter J ■ RFC2475-Differentiated Services
■ RFC2865-RADIUS
Network Management ■ RFC3414-SNMPv3-USM
■ HTTPS graphical web-based, SSL (128-bit encryption) ■ RFC3415-SNMPv3-VACM
■ SNMP v1, v2c, v3 (56-bit encryption)
■ Telnet, VT100, SSH/SFTP (128-bit encryption) IETF SNMP MIBS
■ Command Line Interface (CLI) ■ RFC1493-BRIDGE-MIB
■ RSA key management (1024 bit key) ■ RFC1907-SNMPv2-MIB
■ Authentication and accounting – TACACS+ (encrypted), ■ RFC2012-TCP-MIB
RADIUS client, PPP ■ RFC2013-UDP-MIB
■ RFC2578-SNMPv2-SMI
Warranty ■ RFC2579-SNMPv2-TC
■ 5 Years – Applicable to design and manufacturing related ■ RFC2819-RMON-MIB
product defects ■ RFC2863-IF-MIB
■ draft-ietf-bridge-rstpmib-03-BRIDGE-MIB
■ draft-ietf-bridge-bridgemib-smiv2-03-RSTP-MIB
■ IANAifType-MIB
2-port Serial Device Server With up to 3 Ports Managed Ethernet Switch, 128-bit Encryption RUGGEDCOM RS910 7
Fiber Specifications and Dimension Drawings
Fiber Optical Specifications
RUGGEDCOM RS910 Chapter 5
Installation Guide
Parameter Fiber Port Type Dimension Drawings
Mode Multimode Singlemode Singlemode Singlemode
Connector MTRJ, ST, SC, LC LC, SC, ST LC, SC, ST LC, SC, ST
Typical dist. (km) 2 20 50 90
Dimension Drawings
Optical wavelength (nm)
Cable size core/cladding (um)
1310
50 / 125 or 62.5 / 125
1310
8 / 125 or 9 / 125
1300
8 / 125 or 9 / 125
1300
8 / 125 or 9 / 125
TX power (min/max) (dBm) -9.5 / -4 -9 /-3 -7 / -3 0/5
RX sensitivity (dBm) -15.7 -15.5 -2.5 -2.5
RX saturationNOTE
(dBm) -33.5 -32 -37 -39
All(dB)
Typical budget dimensions are in millimeters,
17 unless otherwise
16.5 stated. 34.5 41.5
Longer segment lengths dependent on fiber specifications. Consult factory for further details.
65.13 116.59
168.66
187.96
7.87
99.06
8 RUGGEDCOM RS910 2-port Serial Device Server With up to 3 Ports Managed Ethernet Switch, 128-bit Encryption
Chapter 5 RUGGEDCOM RS910
Dimension Drawings Installation Guide
Dimension Drawings
130.35
13.64
101.60 11.18
183.89
194.06
83.82
78.74 120.65
24 2-port Serial Device Server With up to 3 Ports Managed Ethernet Switch, 128-bit Encryption RUGGEDCOM RS910 9
Order Codes
6GK6091-0AT22-0CA1-Z A03+B10+C12
48VDC Power Supply, Panel Mount, Conformal Coating,
2 x Fiber 850nm ST, 2 x 100FX - Singlemode, 1300 nm,
SC connectors, 50km, 1 x 100BaseFX - Singlemode,
SC connector, 90km
10 RUGGEDCOM RS910 2-port Serial Device Server With up to 3 Ports Managed Ethernet Switch, 128-bit Encryption
Siemens Industry, Inc. Subject to change without prior notice. The information provided in this brochure contains descriptions or
5300 Triangle Parkway All rights reserved. characteristics of performance which in case of actual use do not
always apply as described or which may change as a result of
Norcross, GA 30092 ©2015 Siemens Industry, Inc.
further development of the products. An obligation to provide
the respective characteristics shall only exist if expressly agreed in
1-800-241-4453 the terms of contract. Availability and technical specifications are
info.us@siemens.com subject to change without notice.
All product designations may be trademarks or product names
of Siemens AG or supplier companies whose use by third parties
for their own purposes could violate the rights of the owners.
usa.siemens.com/ruggedcom