Profile Parameters
This table provides a Device Profile Document in the standard format defined in the DNP3 Subset Definitions Document. While it is referred to in the DNP3 Subset Definitions as a Document, it is only a component of a total interoperability guide. This table uses a BMENOR2200H module as a client as an example. (Your module may be different.)
Parameter |
Capabilities |
Value |
|---|---|---|
Device Identification |
||
Device Function |
Server |
Server |
Vendor Name |
— |
Schneider Electric Industries SAS |
Device Name |
— |
BMENOR2200H |
Device Manufacturer Hardware Version |
— |
1.0 |
Device Manufacturer Software Version |
— |
1.0 |
Device Profile Document Version Number |
— |
1 |
DNP3 Levels Supported |
For both requests and responses: None, Level 1, Level 2, Level 3 |
Level 3 |
Supported Function Blocks |
Self Address Support |
Secure Authentication |
Secure Authentication |
||
Notable Additions |
— |
— |
Methods to set Configurable Parameters |
Software |
Software (EcoStruxure Control Expert) |
Protocol, set via DNP3 |
||
DNP3 XML files available On-line |
N/A |
N/A |
External DNP3 XML files available Off-line |
dnpDP.xml (read) |
dnpDP.xml (read) |
Connections Supported |
Serial |
IP Networking |
IP Networking |
||
Conformance Testing |
Independently tested |
— |
Serial Connections |
||
Port Name |
— |
Serial Port |
Serial Connection Parameters |
Asynchronous - 8 Data Bits, 1 Start Bit, 1 Stop Bit, No Parity |
Asynchronous |
Other |
||
Baud Rate |
Configurable, selectable from 300, 600, 1200, 2400, 4800, 9600, 19200, 38400, 57600, 115200 |
19200 |
Hardware Flow Control (Handshaking) |
RS-232/V.24/V.28 Options: Asserts:
Requires Before Tx:
|
RS-232/V.24/V.28 Options:
|
RS-485 Options: Requires Rx inactive before Tx |
RS-485 Options: Requires Rx inactive before Tx |
|
Interval to Request Link Status |
Configurable range 0...4294967295 ms |
2500 ms |
Supports DNP3 Collision Avoidance |
No |
No |
Receiver Inter-character Timeout |
Not checked |
Not checked |
Inter-character gaps in transmission |
None |
None |
IP Networking |
||
Port Name |
— |
Ethernet |
Type of End Point |
TCP Listening |
TCP Listening |
TCP Datagram |
||
IP Address of this device |
— |
0.0.0.0 |
Subnet Mask |
— |
255.255.255.0 |
Gateway IP Address |
— |
0.0.0.0 |
Accepts TCP Connections or UDP Datagrams from |
Allows All (*.*.*.*) |
Allows All |
Limits based on IP address |
||
Limits based on list of IP addresses |
||
IP Addresses from which TCP Connections or UDP Datagrams are accepted |
— |
*.*.*.* |
TCP Listen Port Number |
Configurable range 1...65536 |
20000 |
TCP Listen Port Number of remote device |
N/A |
N/A |
TCP Keep-alive timer |
Fixed at 75000 ms |
75000 ms |
Local UDP Port |
Configurable range 1...65535 |
20000 |
Destination UDP Port for DNP3 Requests |
Configurable range 1...65535 |
20000 |
Destination UDP Port for initial unsolicited null responses |
Fixed at 20000 |
20000 |
Destination UDP Port for DNP3 Responses |
Configurable range 1...65536 |
20000 |
Multiple server connections |
N/A |
N/A |
Multiple client connections |
Supports multiple clients |
IP Address |
Method 1 (based on IP address) |
||
Time synchronization support |
DNP3 LAN procedure (function code 24) |
LAN procedure |
DNP3 Write Time |
||
Other |
||
Link Layer |
||
Data Link Address |
Configurable range 0...65519 |
4 |
DNP3 Source Address Validation |
Never |
Never |
Always, single address |
||
DNP3 Source Addresses expected when Validation is Enabled |
Configurable range 0...65519 |
3 |
Self Address Support using address 0xFFFC |
Yes |
No |
Sends Confirmed User Data Frames |
Never |
Never |
Always |
||
Sometimes |
||
Data Link Layer Confirmation Timeout |
Configurable range 0...4294977295 ms |
2000 ms |
Maximum Data Link Retries |
Configurable range 0...255 |
3 |
Maximum number of octets Transmitted in a Data Link Frame |
Configurable range 24...292 |
292 |
Maximum number of octets that can be Received in a Data Link Frame |
Configurable range 24...292 |
292 |
Application Layer |
||
Maximum number of octets Transmitted in an Application Layer Fragment other than File Transfer |
Configurable range 0...2048 |
2048 |
Maximum number of octets Transmitted in an Application Layer Fragment containing File Transfer |
— |
— |
Maximum number of octets that can be received in an Application Layer Fragment |
Configurable range 0...2048 |
2048 |
Timeout waiting for Complete Application Layer Fragment |
Configurable range 0...2147483647 |
15000 ms |
Maximum number of objects allowed in a single control request for CROB (Group 12) |
Configurable range1...10 |
10 |
Maximum number of objects allowed in a single control request for Analog Outputs (Group 31) |
Configurable range1...10 |
10 |
Maximum number of objects allowed in a single control request for Data Sets (Groups 85, 86, 87) |
— |
— |
Supports mixed object groups (AOBs, CROBs and Data Sets) in the same control request |
Yes |
Yes |
No |
||
Control Status Codes Supported |
1 TIMEOUT |
— |
2 NO_SELECT |
||
3 FORMAT_ERROR |
||
4 NOT_SUPPORTED |
||
5 ALREADY_ACTIVE |
||
6 HARDWARE_ERROR |
||
7 LOCAL |
||
8 TOO_MANY_OBJS |
||
9 NOT_AUTHORIZED |
||
10 AUTOMATION_INHIBIT |
||
11 PROCESSING_LIMITED |
||
12 OUT_OF_RANGE |
||
13 DOWNSTREAM_LOCAL |
||
14 ALREADY_COMPLETE |
||
15 BLOCKED |
||
16 CANCELLED |
||
17 BLOCKED_OTHER_CLIENT |
||
18 DOWNSTREAM_FAIL |
||
126 RESERVED |
||
127 UNDEFINED |
||
Server Only Properties |
||
Timeout waiting for Application Confirm of solicited response message |
Configurable range 0...2147483647 ms |
10000 ms |
How often is time synchronization required from the client |
Never needs time |
Periodically, every 1800 sec |
between 0 and 4294967295 seconds |
||
Device Trouble Bit IIN1.6 |
Never used |
Never used |
File Handle Timeout |
Not applicable |
Not applicable |
Event Buffer Overflow Behavior |
Discard the oldest event |
Discard the newest event |
Discard the newest event |
||
Event Buffer Organization |
Per object group |
Per object group |
Semds Multi-Fragment Responses |
Yes |
Yes |
Last Fragment Confirmation |
Sometimes |
Sometimes |
DNP Command Settings preserved through a device restart |
— |
— |
Supports configuration signature |
Not supported |
Not supported |
Requests application confirmation |
For event responses: Yes |
Yes |
For non-final fragments: Configurable |
Yes |
|
Supports DNP3 Clock Management |
Yes |
Yes |
No |
||
Server Unsolicited Response Support Properties |
||
Supports unsolicited reporting |
Configurable (On/Off) |
On |
Client Data Link Address |
Configurable range 0...65519 |
3 |
Unsolicited Response Confirmation Timeout |
Configurable range 0...2147483647 |
5000 ms |
Number of Unsolicited Retries |
Configurable range 0...65535 |
3 |
Server Unsolicited Response Trigger Conditions |
||
Number of class 1 events |
Configurable range 0...255 |
5 |
Number of class 2 events |
Configurable range 0...255 |
5 |
Number of class 3 events |
Configurable range 0...255 |
5 |
Total number of events from any class |
Total Number of Events not used to trigger Unsolicited Responses |
— |
Hold time after class 1 event |
Configurable range 0 to 4294967295 ms |
5000 ms |
Hold time after class 2 event |
Configurable range 0 to 4294967295 ms |
5000 ms |
Hold time after class 3 event |
Configurable range 0 to 4294967295 ms |
5000 ms |
Hold time after event assigned to any class |
Fixed at 0 ms |
0 ms |
Retrigger Hold Time |
Hold-time timer is not retriggered for each new detected event (enabled update time) |
Not retriggered |
Other Unsolicited Response Trigger Conditions |
— |
N/A |
Server Performance Properties |
||
Maximum Time Base Drift |
— |
— |
When does server set IIN1.4 |
Never |
Never |
Asserted at startup until first Time Synchronization request received |
||
Range 1 to 4294967 seconds after the last time synchronization |
||
Maximum Internal Time Reference Error when set via DNP |
Other |
Other |
Maximum Delay Measurement Error |
Other |
Other |
Maximum Response Time |
Other |
Other |
Maximum time from start-up to IIN 1.4 assertion |
Other |
Other |
Maximum Event Time-tag error for local Binary and Double Bit I/O |
Other |
Other |
Maximum Event Time-tag error for local I/O other than Binary and Double Bit data types |
Other |
Other |
Individual Field Server Parameters |
||
User-assigned location name or code string (same as g0v245) |
— |
— |
User-assigned ID code/number string (same as g0v246) |
— |
— |
User-assigned name string for the server (same as g0v247) |
— |
— |
Device serial number string (same as g0v248) |
— |
— |
Secondary operator name (same as g0v206) |
— |
— |
Primary operator name (same as g0v207) |
— |
— |
System name (same as g0v208) |
— |
— |
Owner name (same as g0v244) |
— |
— |
Security Parameters |
||
DNP3 device support for secure authentication |
Version 2 (IEEE 1815-2010) |
v 2 5 |
Version 5 (IEEE 1815-2012) |
||
Maximum number of users |
Configurable range 1...300 |
Maximum number of user supported: 0 |
Security message response timeout |
Configurable range 1...640 ms |
2 ms |
Aggressive mode of operation (receive) |
— |
Yes |
Aggressive mode of operation (issuing) |
— |
No |
Session key change interval |
Configurable range 60...604800 sec (when enabled |
Enabled at 900 sec |
Session key change message count |
Configurable range 0...65535 |
1000 |
Maximum error count (SAv2 only) |
Configurable range 0...255 |
2 |
MAC algorithm requested in a challenge exchange |
SHA-1 (truncated to the leftmost 4 bytes) |
SHA-256 (16) |
SHA-1 (truncated to the leftmost 8 bytes) |
||
SHA-1 (truncated to the leftmost 10 bytes) |
||
SHA-256 (truncated to the leftmost 8 bytes) |
||
SHA-256 (truncated to the leftmost 16 bytes) |
||
Key-wrap algorithm to encrypt session keys |
AES-128 | AES-128 |
| AES-256 | ||
Cipher Suites used with DNP implementations using TLS |
TLS_RSA encrypted with AES-128 |
TLS_RSA encrypted with AES-128 |
Change cipher request timeout |
Fixed at 30 sec |
30 sec |
Number of Certificate Authorities supported |
— |
No limit |
Certificate Revocation check time |
Not relevant - CRL is not used |
Not relevant |
Additional critical function codes |
None |
None |
Other critical fragments |
None |
N/A |
Support for remote update key changes |
None |
N/A |
Default user credentials are permitted to expire |
No |
No |
Secure Authentication enabled |
Configurable: On or Off |
Off |
Length of the challenge data |
Configurable range 4...60 bytes |
4 bytes |
Maximum statistic counts (SAv5): |
||
Max Detected Authentication Failures |
Configurable range 4...60 |
4 |
Max Reply Timeouts |
Configurable range 1...65535 |
3 |
Max Authentication Rekeys |
Configurable range 1...65535 |
3 |
Max Error Messages Sent |
Configurable range 1...65535 |
3 |
Broadcast Functionality |
||
Disabled Not configurable |
— |
— |