Profile Parameters
This table provides a Device Profile Document in the standard format defined in the DNP3 Subset Definitions Document. While it is referred to in the DNP3 Subset Definitions as a Document, it is only a component of a total interoperability guide. This table uses a BMENOR2200H module as a client as an example. (Your module may be different.)
Parameter |
Capabilities |
Value |
|---|---|---|
Device Identification |
||
Device Function |
Client |
Client |
Vendor Name |
— |
Schneider Electric Industries SAS |
Device Name |
Device Name |
BMENOR2200H |
Device Manufacturer Hardware Version |
— |
1.0 |
Device Manufacturer Software Version |
— |
1.0 |
Device Profile Document Version Number |
— |
1 |
DNP3 Levels Supported |
For both requests and responses: None, Level 1, Level 2, Level 3 |
For requests: Level 3 |
For responses: Level 3 |
||
Supported Function Blocks |
Self Address Support |
Secure Authentication |
Secure Authentication |
||
Notable Additions |
Refer to the DNP3 implementation table |
|
Methods to set Configurable Parameters |
Software |
Software (EcoStruxure Control Expert) |
Proprietary file loaded via other transport mechanism |
||
DNP3 XML files available On-line |
N/A |
Software (EcoStruxure Control Expert) |
External DNP3 XML files available Off-line |
dnpDP.xml (read) |
dnpDP.xml (read) |
Connections Supported |
Serial |
IP Networking |
IP Networking |
||
Conformance Testing |
Independently tested |
— |
Serial Connections |
||
Port Name |
— |
Serial Port |
Serial Connection Parameters |
Asynchronous - 8 Data Bits, 1 Start Bit, 1 Stop Bit, No Parity |
Asynchronous |
Other, explain configurable |
||
Baud Rate |
Configurable, selectable from 300, 600, 1200, 2400, 4800, 9600, 19200, 38400, 57600, 115200 |
19200 |
Hardware Flow Control (Handshaking) |
RS-232/V.24/V.28 Options: Asserts:
Requires Before Tx:
|
RS-232/V.24/V.28 Options:
|
RS-485 Options: Requires Rx inactive before Tx |
RS-485 Options: Requires Rx inactive before Tx |
|
Interval to Request Link Status |
Configurable, range 0...4294967295 ms |
2500 ms |
Supports DNP3 Collision Avoidance |
No |
No |
Receiver Inter-character Timeout |
Not checked |
Not checked |
Inter-character gaps in transmission |
None |
None |
IP Networking |
||
Port Name |
— |
Ethernet |
Type of End Point |
TCP Initiating |
TCP Initiating |
TCP Datagram |
||
IP Address of this device |
— |
0.0.0.0 |
Subnet Mask |
— |
255.255.255.0 |
Gateway IP Address |
— |
0.0.0.0 |
Accepts TCP Connections or UDP Datagrams from |
Limits based on IP address |
IP address |
IP Addresses from which TCP Connections or UDP Datagrams are accepted |
– |
192.168.0.1 |
TCP Listen Port Number |
N/A |
N/A |
TCP Listen Port Number of remote device |
Configurable range 1...65535 |
20000 |
TCP Keep-alive timer |
Fixed at 75000 ms |
75000 ms |
Local UDP Port |
Configurable range 1...65535 |
20000 |
Let system choose (client only) |
||
Destination UDP Port for DNP3 Requests |
Configurable range 1...65535 |
20000 |
Destination UDP Port for initial unsolicited null responses |
None |
None |
Destination UDP Port for DNP3 Responses |
Configurable range 1...65536 |
20000 |
Multiple server connections |
Supports multiple servers |
TRUE |
Multiple client connections |
Not supported |
Not supported |
Time synchronization support |
DNP3 LAN procedure (function code 24) |
LAN procedure |
DNP3 Write Time |
||
Other |
||
Link Layer |
||
Data Link Address |
Configurable range 0...65519 |
4 |
DNP3 Source Address Validation |
Always, one address allowed |
Always, single address |
DNP3 Source Addresses expected when Validation is Enabled |
Configurable range 0...65519 |
3 |
Self Address Support using address 0xFFFC |
Yes |
No |
No |
||
Sends Confirmed User Data Frames |
Never |
Never |
Always |
||
Sometimes |
||
Data Link Layer Confirmation Timeout |
Configurable range 0...2147483647 ms |
2000 ms |
Maximum Data Link Retries |
Configurable range 0...255 |
3 |
Maximum number of octets Transmitted in a Data Link Frame |
Configurable range 24...292 |
292 |
Maximum number of octets that can be Received in a Data Link Frame |
Configurable range 24...292 |
292 |
Application Layer |
||
Maximum number of octets Transmitted in an Application Layer Fragment other than File Transfer |
Configurable range 0...2048 |
2048 |
Maximum number of octets Transmitted in an Application Layer Fragment containing File Transfer |
Fixed at 0 |
0 |
Maximum number of octets that can be received in an Application Layer Fragment |
Configurable range 0...2048 |
2048 |
Timeout waiting for Complete Application Layer Fragment |
None |
None |
Maximum number of objects allowed in a single control request for CROB (Group 12) |
Fixed at 10 |
10 |
Maximum number of objects allowed in a single control request for Analog Outputs (Group 31) |
Configurable range 1...512 |
10 |
Maximum number of objects allowed in a single control request for Data Sets (Groups 85, 86, 87) |
Configurable range 1...128 |
8 |
Supports mixed object groups (AOBs, CROBs and Data Sets) in the same control request |
Yes |
Yes |
No |
||
Control Status Codes Supported |
4 NOT_SUPPORTED |
— |
8 TOO_MANY_OBJS |
||
Client-Only Properties |
||
Timeout waiting for Complete Application Layer Responses (ms) |
Configurable range 0...4294967295 ms |
30000 ms |
Maximum Application Layer Retries for Request Messages |
None |
None |
Timeout waiting for First or Next Fragment of an Application Layer Response |
Configurable range 0...4294967295 ms |
10000 ms |
Issuing controls to Off-line devices |
No |
No |
Issuing controls to off-scan devices |
No |
No |
Maximum Application Layer Retries for Control Select Messages (same sequence number) |
None |
None |
Maximum Application Layer Retries for Control Select Messages (new sequence number) |
None |
None |
Security Parameters |
||
DNP3 device support for secure authentication |
Configurable, selectable from 2, 5 |
v 2 5 |
Maximum number of users |
Configurable range 1...300 |
Maximum number of user supported: 0 |
Security message response timeout |
Configurable range 1...640 ms |
2 ms |
Aggressive mode of operation (receive) |
— |
Yes |
Aggressive mode of operation (issuing) |
— |
No |
Session key change interval |
Configurable range 60...604800 sec (when enabled) |
Enabled at 900 sec |
Session key change message count |
Configurable range 0...65535 |
1000 |
Maximum error count (SAv2 only) |
Configurable range 0...255 |
2 |
MAC algorithm requested in a challenge exchange |
SHA-1 (truncated to the leftmost 4 bytes) |
SHA-256 (16) |
SHA-1 (truncated to the leftmost 8 bytes) |
||
SHA-1 (truncated to the leftmost 10 bytes) |
||
SHA-256 (truncated to the leftmost 8 bytes) |
||
SHA-256 (truncated to the leftmost 16 bytes) |
||
Key-wrap algorithm to encrypt session keys |
AES-128 |
AES-128 |
AES-256 |
||
Cipher Suites used with DNP implementations using TLS |
TLS_RSA encrypted with AES-128 |
TLS_RSA encrypted with AES-128 |
Change cipher request timeout |
Fixed at 30 sec |
30 sec |
Number of Certificate Authorities supported |
— |
No limit |
Certificate Revocation check time |
Not relevant - CRL is not used |
Not relevant |
Additional critical function codes |
None |
None |
Other critical fragments |
None |
None |
Support for remote update key changes |
None |
None |
Default user credentials are permitted to expire |
No |
No |
Secure Authentication enabled |
Configurable: On or Off |
Off |
Length of the challenge data |
Configurable range 4...60 bytes |
4 bytes |
Maximum statistic counts (SAv5): |
||
Max Authentication Failures |
Configurable range 4...60 |
4 |
Max Reply Timeouts |
Configurable range 1...65535 |
3 |
Max Authentication Rekeys |
Configurable range 1...65535 |
3 |
Max Error Messages Sent |
Configurable range 1...65535 |
3 |
Broadcast Functionality |
||
Disabled Not configurable |
— |
— |