Ask Me About Webinar: Data Center Assets - Modeling, Cooling, and CFD Simulation
Join our 30-minute expert session on July 10, 2025 (9:00 AM & 5:00 PM CET), to explore Digital Twins, cooling simulations, and IT infrastructure modeling. Learn how to boost resiliency and plan power capacity effectively. Register now to secure your spot!
Metering & Power Quality
Schneider Electric support forum about Power Meters (ION, PowerTag, PowerLogic) and Power Quality from design, implementation to troubleshooting and more.
Link copied. Please paste this link to share this article on your social media post.
I have a customer who is seeing regular Ethernet alarms in the ION9000 meter event log.
The alarms are associated with FTP & Telnet for USER0 and appear to be triggered by the Front Panel (see attached).
Could an external IP be trying to access the ION9000 meter (hack)?
Thanks
Link copied. Please paste this link to share this article on your social media post.
Hello @solutions_iems- ,
A few items to note, FTP is only supported on very old firmware. Where possible I would recommend upgrading the meter to the latest firmware.
As for the events, User 0 is a catchall for unauthenticated communications. It is possible the customer's IT department is doing a kind of auto scans for specific ports. There are some options available to the customer.
A) disable the ports when not being used. FTP is used during upgrades to transfer the meter's web pages, or to collect COMTRADe files. If customer is not using COMTRADE files, FTP could be disabled unless doing firmware upgrades. Same with Telnet, the port could be disabled unless being used for a specific purpose (only common case I know of is troubleshooting).
B) Changing the ports to a different number from default, many scans will look for specific ports, if the meter is not using a default port the scan will not try to access the device.
Regards,
Charles
Link copied. Please paste this link to share this article on your social media post.
Hello @solutions_iems- ,
A few items to note, FTP is only supported on very old firmware. Where possible I would recommend upgrading the meter to the latest firmware.
As for the events, User 0 is a catchall for unauthenticated communications. It is possible the customer's IT department is doing a kind of auto scans for specific ports. There are some options available to the customer.
A) disable the ports when not being used. FTP is used during upgrades to transfer the meter's web pages, or to collect COMTRADe files. If customer is not using COMTRADE files, FTP could be disabled unless doing firmware upgrades. Same with Telnet, the port could be disabled unless being used for a specific purpose (only common case I know of is troubleshooting).
B) Changing the ports to a different number from default, many scans will look for specific ports, if the meter is not using a default port the scan will not try to access the device.
Regards,
Charles
Create your free account or log in to subscribe to the board - and gain access to more than 10,000+ support articles along with insights from experts and peers.
With achievable small steps, users progress and continually feel satisfaction in task accomplishment.
Usetiful Onboarding Checklist remembers the progress of every user, allowing them to take bite-sized journeys and continue where they left.
of