POC - Ethernet Network Specification, Private Machine Network

General:

The POC server, the firewall and the machines in a plant site communicate via the POC private
machine network. Typically this network is a standard Ethernet segment, which is kept absolutely
separated and isolated from the site's infrastructural networks. The strict separation is done for
security and load balancing reasons and is considered as a must.

Load balancing and management:

A reliable network connection between the POC server and the machines is essential for the correct
function of POC. There has to be a continuous flow of data between the machines and POC. Since
different communication protocols are used, the management and configuration of the network
between POC and the machines has to stay static and exactly as defined by the supplier.

Unknown third party network traffic or network management impacts might lead to a load balancing
issues and unreliable network connections which are not acceptable. It will not be possible to hold the
supplier responsible for the proper function of the POC system, in case the POC machine network
does not meet the required specifications.

Security:

The second issue why the network segment between POC and the machines is considered as a
closed and private network segment is security. This network segment is part of a production plant
and has to be kept in a controlled and secure environment where all hosts which are connected to the
network are well known and absolutely do not impact any security hazards. The logical connection
from the machine network to the site infrastructure intentionally is routed through a hardware firewall
with a restrictive one way setup and encrypted tunneled connections.

Summary:

In order to fulfill the requirements as described above, the customer is requested to provide a twisted
pair Ethernet network installation (Switches, cabling and outlets) which is configured as a closed
segment with physically and logically separation from the plant site's network. The network provided
shall be capable to be configured and used for the IP address range of a private class C network
(192.168.123.xxx ).

1-2
POC – Ethernet Network Specification
10/100/1000 Base-T Ethernet (twisted pair)
Cable UTP (unshielded twisted pair) Category 5e
Plug type RJ45 (8 pin connector)
Max cable length PC network interface card to hub 100 m
Hub/Switch locations in the plant according to max. length
of network cables
Network proprietary used for POC
(no site communications on same phys./log. network)
Network cabling in trays to be kept separated from power lines!
TCP/IP network addresses to be defined by customer
( 192.168.x.y Class C addresses recommended )

Hub/Switch specification:

It should be an industrial Hub/Switch in dust protected housing.

Depending on number of machines and maximal distance of 100m

from hub to the machines, a different size of hub can be used.
Example: 1x24 ports or 2x24 ports or 1x48 ports and so on.

This should be specified by a local specialist according to the

international standard.

2-2