SCALANCE S Industrial Security Appliances

SCALANCE S Industrial Security Appliances for automation systems

Specialized in industrial automation systems

The SCALANCE S Industrial Security Appliances protect industrial networks and automation systems by segmenting the network and establishing secure communications channels. As a part of the “Defense in Depth” security concept, they protect devices and networks in discrete manufacturing and in the process industry, and help create a flexible security zone concept.

Select your Industrial Security Appliance

TIA Selection Tool

Select and order directly from the Industry Mall

Industrial Firewall Appliances

Industrial Firewall Appliances

High-performance Industrial Firewall Appliances offer you versatile firewall mechanisms you can use to protect even flat networks with a throughput of 600 Mbit/s and up to 1,000 firewall rules.

Industrial VPN Appliances

Industrial VPN Appliances

In addition to the firewall mechanisms offered by the Industrial Firewall Appliances, powerful Industrial VPN Appliances also permit up to 200 VPN connections with a data throughput of up to 120 Mbit/s.

Overview of SCALANCE S

SCALANCE S Industrial Security Appliances at a glance

Whether the goal is cell protection, a demilitarized zone (DMZ), or authenticated access via VPN or user-specific firewall rules, SCALANCE S Industrial Security Appliances protect your automation network against many different threats to suit your needs, thanks to a large portfolio of security mechanisms that can be used in combination. In conjunction with comprehensive protection measures, this will build up effective defense against unintentional system accesses or targeted attacks.

Security in industrial networks

The SCALANCE S Industrial Security Appliances from Siemens let you seamlessly connect your automation network to the security structures of the office and IT world. In doing so, the appliances fulfill the special requirements of automation technology, like simple upgrading of existing plant, ease of commissioning, and minimum downtimes if a fault occurs. The various security measures can be flexibly combined with each other to suit specific security needs.

 

SCALANCE S is developed in accordance with the provisions of the Industrial Security Standard IEC  62443-4-1, as certified by the TÜV. These provide for the implementation of a flexible security zone concept (using network separation, a DMZ or secure remote maintenance, for example), permit versatile configuration using TIA Portal, WBM and CLI, and can be integrated into the SINEC NMS network management software. They can also be used in a temperature range of -40 to +70°C.

Read all about the digital guardian angels: SCALANCE S Industrial Security Appliances

Download brochure

Security with versatile firewall mechanisms

Industrial Firewall Appliances offer firewall performance of approx. 600 Mbit/s and secure access between separate network segments using a bridge firewall. User-specific firewall rules allow temporary network accesses to be granted as required. The connection can be made via 10/100/1000 Mbit/s Ethernet ports and over fiber optic for large distances (up to 200 km).

 
SCALANCE SC632-2C
SCALANCE SC636-2C
Firewall version
Stateful Inspection
Stateful Inspection
Bridge firewall/user-specific firewall
Yes/Yes
Yes/Yes
No. of firewall rules/Firewall data throughput
1,000/600 Mbit/s
1,000/600 Mbit/s
No. of VPN connections/IPSec VPN data throughput
– / –
– / –
SINEMA Remote Connect license approval
Integrated
Integrated
Port characteristics electrical/optical (via combo ports)
2x RJ45 / 2x SFP
6x RJ45 / 2x SFP
MRP client/HRP client
No
Yes
Industry Mall

Secure accesses via Virtual Private Networks

In addition to the versatile firewall mechanisms, Industrial VPN Appliances also permit up to 200 VPN connections with a data throughput of up to 120 Mbit/s. The connection can be made via 10/100/1000 Mbit/s Ethernet ports and over fiber optic for large distances (up to 200 km).

 
SCALANCE S615
SCALANCE SC642-2C
SCALANCE SC646-2C
Firewall version
Stateful Inspection
Stateful Inspection
Stateful Inspection
Bridge firewall/user-specific firewall
No/Yes
Yes/Yes
Yes/Yes
No. of firewall rules/Firewall data throughput
128/100 Mbit/s
1,000/600 Mbit/s
1,000/600 Mbit/s
No. of VPN connections/IPSec VPN data throughput
20/35 Mbit/s
200/120 Mbit/s
200/120 Mbit/s
SINEMA Remote Connect license approval
Via KEY-PLUG SINEMA RC
Integrated
Integrated
Port characteristics electrical/optical (via combo ports)
5x RJ45 ports
2x RJ45 / 2x SFP
6x RJ45 / 2x SFP
MRP client/HRP client
No
No
Yes
Industry Mall

Plug-in transceiver for SCALANCE

Plug-in transceivers allow you to flexibly equip network components of the SCALANCE family with an SFP slot for optical connections.  

More accessories

See the Siemens Industry Mall for all the accessories for products in the SCALANCE family.

SINEC NMS network management system

SINEC NMS is the new generation of the Network Management System (NMS) for digital enterprises, and is up to dealing with more and more complex network structures in an increasingly digitalized world.

SINEMA Remote Connect – management platform for remote networks

Users can utilize SINEMA Remote Connect to conveniently and securely maintain widely distributed plants or machines via remote access.

SOFTNET Security Client – Configuring without specialist security knowledge

The SOFTNET Security Client offers secure data transmission from the PC/programming device to Industrial Security components by means of VPN.

Use cases

Solutions for many different challenges

Use SCALANCE S Industrial Security Appliances to solve many potential challenges. Issuing access authorizations and network accesses from secured and unsecured networks are just two possible scenarios.
Additional information

Downloads, support, and services

Want to know more about our products for improved network security? Download our information or find out about our portfolio – covering every stage from efficient planning to implementation.

The fastest way to the experts

Proposed solutions for your queries and direct access to our experts in Technical Support

Service offers

To remain competitive over the long term, companies in industry must ensure – and ideally increase – the availability and productivity of  machines and plants. As your partner, we offer a unique range of services and support based on our extensive technology and industry expertise.

Well trained for excellent handling

Receive standardized or individual expertise directly from the manufacturer – with training centers in more than 60 countries.

Professional support

Professional support for future-proof communications networks

First-class network components will not create a first-class industrial communications network on their own. A thorough understanding of network designs is at least as important. You get both when you deal with us and our certified Solution Partners. That’s where you benefit: our Professional Services for Industrial Networks give you professional help in developing your network solution – tailored to suit your specific requirements.