Firewall rules for BACnet/SC communication - Metasys - LIT-12013959 - 13.0

BACnet/SC Workflow Technical Bulletin

Brand
Metasys
Document type
Technical Bulletin
Document number
LIT-12013959
Version
13.0
Revision date
2023-09-29
Product status
Active
Language
English
By default, the Windows Server Operating System has firewall rules that block required traffic​. Complete the following steps to enable this traffic:
  1. Go to Control Panel > System and Security > Windows Defender Firewall > Advanced settings > Inbound Rules.
  2. Select all File and Printer Sharing (Echo Request - ICMPv4-In) rules, right-click and select Enable Rule.
  3. Go to Control Panel > System and Security > Windows Defender Firewall > Advanced settings > Outbound Rules.
  4. Select all File and Printer Sharing (Echo Request - ICMPv4-Out) rules, right-click and select Enable Rule.
You also need to create inbound and outbound rules for the SC port. Complete the following steps to create these rules:
  1. Go to Control Panel > System and Security > Windows Defender Firewall > Advanced settings > Inbound Rules.
  2. From the Actions menu in the right pane, select New Rule.
  3. Select Port in the Rule Type step and click Next.
  4. Select TCP and Specific local ports, then enter the port number, for example 1443, and click Next.
    Note: The port number you enter here must match the Secure Port Number for the Server. See Configuring the BACnet/SC site settings for more information about the Secure Port Number.
  5. Select Allow the connection and click Next.
  6. Select the required profile and click Next.
  7. Enter a name for the new rule, for example BACnetSCIn.
  8. Click Finish.
  9. Repeat the steps for Outbound Rules. Enter a name for the new rule, for example BACnetSCOut.