Contact
+49 941 58692 888

Call-back service

Project enquiry

Page navigation:

From the field
Connecting the gas network
LTE450 for critical infrastructures
Secure in critical infrastructures
Added value
FAQ

From the field: Utonomy develops cloud-based gas pressure control

„The INSYS icom products are perfectly adapted to our application for smart gas grids and operate on-site with a high level of reliability. We are delighted to be working with the highly experienced team of INSYS icom.”

Adam Kingdon
Managing Director
Utonomy Ltd., Southampton (UK)

Learn more

Connecting the gas network with communication technology

Gas network operators face two main challenges when it comes to digitalisation: The transmission of measurement data from the gas network and the gas pressure regulating and metering stations as well as the remote monitoring of these locations, particularly in the event of maintenance and faults.

The basic connection for data transmission is made via industrial routers, which enable a connection via LTE, for critical infrastructures (KRITIS) even LTE450, DSL and fibre optics. Redundancy is also used to ensure high availability, both in the area of fibre optics and LTE as well as between different LTE connections (LTE1 & LTE2).

Measurement data is then transferred to control and cloud systems via secure communication over public or private networks using OpenVPN and IPsec. Secure VPN tunnels provide the basis for remote access and remote maintenance for network devices. Fault messages and alerts can be transmitted effectively via SMS, e-mail and MQTT.

Secure networking via multi VPN

  • Multiple parallel VPN tunnels
  • Client and server
  • Cryptographic procedures according to BSI TR-02102
  • VPN technologies: OpenVPN, IPSec, GRE, Dynamic VPN

Container environment for individual applications

  • Collect, pre-process and analyse data on site
  • Minimise data volumes and transfer costs
  • Simply transfer pre-processed data to cloud services
To Edge Computing

Secure rollout and operation of large router fleets

  • Central monitoring of all routers
  • Mass rollouts and automated processes
  • Regular updates of firmware, certificates and software
To icom Router Management

LTE450 Mhz cellular radio for critical infrastructures

MRX3 LTE450

To the product

MRX5 LTE450

To the product

MRcard PL450

To the product

LTE450 Antennas

LTE450 Wall Antenna 5G/4G/3G/2G IP67 IK10 5m SMA
To the product

Highlights

  • null
    Complete network coverage
  • null
    Highest availability
  • null
    IT security for critical infrastructures

Membership of the 450 MHz Alliance

German provider for our LTE450 solution

more about LTE450

Gas grid as critical infrastructure – focus on security

As part of the energy industry, the gas network is critical infrastructure and operators are subject to special security requirements. This means that not only the gas, but also the resulting data must be protected against attacks. In terms of IT security, the industrial router plays a central role here.

  • Compliant for critical infrastructures; provider with the most installations in critical infrastructure
  • MRX3-LTE router certified according to BSI BSZ for critical infrastructures
  • Firmware update signed and encrypted
  • Support packages encrypted
  • Cryptographic procedures conforming to BSI TR-02102-2
  • Hardened firmware
  • Regular penetration tests
  • UpdatePolicy

  • 8 weeks update cycle for router firmware
  • White-list industrial firewall with IP packet and MAC filtering
  • No default passwords
  • User/PW, RADIUS or certificate-based authentication
  • Certificates

Arrange a consultation now

Test router free of charge

Added value of the INSYS icom solution

Extensive routing, VPN and firewall functions

OSPF, RIP, GRE, IPsec, OpenVPN, DMVPN, parallel tunnels, EST, stateful firewall, IP/MAC, Port filter

null

Analysis & debugging tools

Tools for analysing the network: ping/icmp, tcpdump, traceroute, …

null

Multi VPN

Setup of several parallel VPN tunnels possible (IPsec, OpenVPN); client and server available

null

Web proxy function

Access to web interface (e.g. from video cameras without VPN client) from smartphone, tablet and browser

null

Own software containers

LXC container technology for installing your own applications on the router; dedicated IP endpoint for full firewall control

Die Applikationssoftware icom Data Suite ermöglicht dem Betreiber, Daten direkt auf dem Router zu erfassen und zu verarbeiten (Edge Computing).

Quality

Durable products in established industrial quality

null

Standard-compliant

Compatibility with all common network products and protocols, e.g. Cisco, Fortinet, Juniper

null

Interfaces

In addition to Ethernet, also analogue and digital IOs as well as serial interfaces (e.g. Modbus)

Durch die flexiblen MRcards schafft der modulare Router MRX mit bis zu 17 Ethernet-Ports, seriellen Schnittstellen oder digitalen und analogen I/Os viele verschiedene Anwendungs-Schnittstellen.

All products and services are also regularly tested by an independent organisation. Find out more here.

Communication technology for gas networks – Frequently asked questions

Is it possible to operate several VPN tunnels in parallel?

Multi-VPN operation can be realised with the routers from INSYS icom. It is possible to operate both OpenVPN and IPsec tunnels to different remote stations in parallel. The networks are completely isolated from each other and can therefore also be used for external participants.

Is INSYS icom certified for critical infrastructure?

INSYS icom has received a security certificate for critical infrastructure from the German Federal Office for Information Security (BSI) for the MRX3LTE. In addition, regular penetration tests are carried out for all products by an independent organisation. Further information on IT security can be found here.

Do INSYS icom products fulfil legal requirements?

The standards specified in laws such as NIS2 do not normally affect our routers and services directly. However, our products are generally compatible with the systems that have to fulfil the requirements of the statutory environment.
On our IT security page, you will find detailed documentation that may be required for an audit in this context.

As an operator in critical infrastructure, can I use cloud-based services?

The current legal situation does not exclude the use of cloud services. INSYS icom’s critical infrastructure customers certainly use our solutions such as the icom Connectivity Suite – VPN or icom Router Management. Ultimately, implementation depends on company-specific regulations.

Can I implement device management for routers if cloud solutions are not authorised?

An ‘on-premises’ installation in a private network is possible for icom Router Management. Depending on the number of routers in operation, it is advisable to integrate a server or a data centre. Further information on icom Router Management can be found here.

How and where are industrial routers installed?

Industrial routers are clicked onto a DIN-rail in the control cabinet or screwed directly to the housing or a bracket.
With cellular routers, the external cellular antenna is routed out of the control cabinet and mounted on the outside wall of the building.

What interfaces do the routers have for operation and monitoring?

Our industrial routers can be easily integrated into existing monitoring systems with the following interfaces: REST-API, CLI, SNMP.
Information on a solution for centralised monitoring together with our partner Paessler can be found here.

Any further questions? We will be happy to assist you!