For REstablishing a secure connection between two sites is possible use an architecture based on Skkyhub, the powerful Skkynet secure cloud gateway that allows real-time data streaming (in tunnel/mirror mode) while keeping the incoming ports of the firewalls closed on both sites.
The connection to SkkyHub takes place via Cogent DataHub via a (bidirectional) tunnel / mirror connection configured for the firewall, only outbound.
DataHub's “tunnel” functionality allows you to send and receive encrypted data across your private network or the Internet via the DHCP protocol: With this configuration it is possible not to open any firewall ports on the local DataHub, however establishing a secure outgoing connection.
The "mirror" function allows the transmission of data and all updates on the destination DataHub through the “triangulation” carried out by SkkyHub.
Here's how you configure DataHub to connect SkyHub:
- The DataHub is a “slave” tunnel. Each DataHub that needs to connect to SkkyHub must be configured as a slave mode tunneling. Make sure that no inbound firewall ports have ever been opened on your local system, as Cogent DataHub always only makes secure outbound connections.
- DataHub is an “authoritative” source. At the same time, in a typical scenario of sending data to the Cloud to SkkyHub, DataHub is considered to be the most authoritative (read best) source of the data set. In case of disconnection from the network it is considered to update SkkyHub with the latest data from the DataHub running on the local system and not vice versa.
- The data flow can be bidirectional. It is important to note that the “slave” and “authoritative” features of the connection only apply to startup and reconnection. Once the connection is established, the connection is replicated between DataHub and SkkyHub. The data flow can be configured to be bidirectional or unidirectional, depending on your needs.
How does SKKYNET work?
Stream your data anywhere: Secure real-time data communication for Industrial IoT and Industry 4.0
- Versatile – An industrial middleware layer capable of connecting with any SCADA system or other ICS technologies.
- Real-Time – Provides real-time connectivity to and from the field for real-time viewing and interaction.
- Single dashboard – Unified view for all data even if coming from different sources.
- Sure – No open incoming firewall ports, no VPN and proxy support.
