BACnet/IP

Service management with confirmation

"Confirmed services" tab

This table lists the IDs and associated confirmed BACnet/IP services (services that require a reply) that have been predefined on the firewall. These codes are classified by service set (Service choice):

  • Alarm and Event,
  • File Access,
  • Security,
  • Object Access,
  • Remote Device Management,
  • Virtual Terminal.

Predefined confirmed BACnet/IP services are allowed by default (Allow action) and this action can be modified for each one of them. The buttons Block by service set, Allow by service set and Modify all services make it possible to modify the action (Allow/Block) applied to the selected service set or to all BACnet/IP services listed in the table.

Other services with confirmation tab

This list allows authorizing additional confirmed BACnet/IP service IDs blocked by default by the firewall. It is possible to Add or Delete elements to or from this list by clicking on the relevant buttons.

Management of services without confirmation

"Unconfirmed services" tab

This table lists the IDs and associated unconfirmed BACnet/IP services (services that do not require a reply) that have been predefined on the firewall.

Predefined unconfirmed BACnet/IP services are allowed by default (Allow action) and this action can be modified for each one of them. The Modify all services button makes it possible to edit the action (Allow/Block) applied to all BACnet/IP services listed in the table.

Other services without confirmation tab

This list allows authorizing additional unconfirmed BACnet/IP service IDs blocked by default by the firewall. It is possible to Add or Delete elements to or from this list by clicking on the relevant buttons.

Support

Disable intrusion prevention When this option is selected, the scan of the BACnet/IP protocol will be disabled and traffic will be authorized if the filter policy allows it.
Log every BACnet/IP query Enables or disables the logging of BACnet/IP requests.
Automatically detect and inspect the protocol If this protocol is enabled, the inspection function will automatically apply to discover corresponding traffic that filter rules allow.