cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
337
Views
1
Helpful
3
Replies

Firewall for IEC 60870-5-104 standard.

alberx
Level 1
Level 1

Hello,

I need a firewall supporting IEC 60870-5-104 standard. I know ISA300 does it, but I don't need a rugged firewall because of the location and other purposes of the firewall. 

My question is if any other Cisco Secure firewall supports it (4200, 9300..). Data sheets doesn't show but I have read somewhere that it is possible configure security rules for that protocols in Management Console.

So I'm not sure if any Cisco Firewall would support the standard and able to configure security rules for that protocols.

Does anybody has experience with that?

Thanks.

3 Replies 3

nipun043
Cisco Employee
Cisco Employee

The IR1835 and IR8340 support full Next generation firewall capabilities including IPS/IDS , app-aware firewalls , URL filtering , application malware and DNS queries . they dont see to be IEC certified - but have T101/104 , SCADA capabilities 

Good point thanks. But the requirements of my client talk specificaly about a NGFW managed by FMC.

alberx
Level 1
Level 1

For anyone interested. I found the AVC (Cisco Firepower Application Detector Reference), that is the one used for the Cisco Firewalls.

https://www.cisco.com/c/en/us/td/docs/security/firepower/Application_Detectors/vdb-343/cisco_firepower_application_detector_reference_343.html

Also the Firepower Applicaton Detectors:

https://appid.cisco.com/home

I think the VDB is applied in all the Cisco firewalls doesn't matter the model.

So I suppose any Cisco Firewall could detect IoT applications of the IEC 60870-5-104 standard because they are included in VDB.