Home
N2OS Configuration
The N2OS Configuration - Reference Guide.
Decryption
Protocol passive decryption
Nozomi Networks offers tools to decrypt network protocols and apply standard deep packet inspection (DPI) to the decrypted communication. Depending on the specific protocol, different constraints and configuration steps are applicable.

N2OS Configuration
The N2OS Configuration - Reference Guide.
- Features
- Edit sensor configuration
- Basic rules
- Garbage Collector
- Alerts
- Incidents
- Nodes
- Assets
- Links
- Variables
- Protocols
- Vulnerability assessment
- Smart Polling
- Discovery
- Monitored subnets
- Customize node identifier generation
- Decryption
  - Protocol passive decryption
    Nozomi Networks offers tools to decrypt network protocols and apply standard deep packet inspection (DPI) to the decrypted communication. Depending on the specific protocol, different constraints and configuration steps are applicable.
  - IEC 60870-5-7 / 62351-3/5 encrypted links
    IEC TC57 (POWER SYSTEMS management and associated information exchange) develops the standards 60870 and 62351. IEC 60870 part 5 (by WG3) describes systems used for telecontrol. IEC 62351 (by WG15) handles the security of TC 57 series.
  - Configure IEC-62351-3
- Trace
- Time Machine
- Retention
- Bandwidth throttling
- Synchronization
- Slow updates
- Session hijacking
- Passwords
- Sandbox
- Miscellaneous

Protocol passive decryption

Nozomi Networks offers tools to decrypt network protocols and apply standard deep packet inspection (DPI) to the decrypted communication. Depending on the specific protocol, different constraints and configuration steps are applicable.

Table 1. Protocol passive decryption
Protocol	References	Credential type	Enablement steps
dlms	IEC 62056	DLMS encryption key	In the Credentials Manager, enter the credentials. In the /data/cfg/n2os.conf.user file, add this line: `credentials enable dlms-cosem true` As a privileged user from a shell, run the command: `service n2osids stop`
iec104s	IEC 60870-5-7	RSA-signed certificate private key	See Configure IEC-62351-3.
	IEC 62351-5
	IEC 62351-3
	TLS
r-goose	IEC 62351-6	R-GOOSE encryption key	In the Credentials Manager, enter the credentials. This happens through an integration to a IEC 62351-9 GDOI Key Distribution Center.
	IEC 62351-9
	RFC 6407
snmpv3	RFC 5590	SNMP privacy password	In the Credentials Manager, enter the credentials. In the /data/cfg/n2os.conf.user file, add this line: `credentials enable snmp3 true` As a privileged user from a shell, run the command: `service n2osids stop`
snmpv3	RFC 3414	SNMP privacy password