3. Installation
WARNING
Electric shock
Death or serious personal injury
‐
Connect CIM 500 only to SELV or
SELV-E circuits.
QR code for the CIU quick guide
3.1 Security
The connected Grundfos products must be behind a
firewall or connected to a private network.
If a firewall or private network is not in place, the
Grundfos product may be subject to a cyber-security
risk and becomes vulnerable to an attack or
compromise.
Follow the highly recommended configuration
requirements below. If in doubt, consult an IT
Infrastructure Specialist.
Related information
3.5.1 Connection to the webserver using GRM IP /
GiC
3.1.1 CIM 500
CIM 500 is a traditional network-connected device
and must be placed on a private network behind a
firewall. It must not be connected directly to the
Internet. Also, no TCP/IP ports must be forwarded to
the product. If you need remote access to the device,
you must use technologies such as Virtual Private
Networks (VPNs) to ensure a secured connection.
Consider contacting an IT Infrastructure Specialist to
establish such a solution.
For CIM 500 in mode 4, GRM IP (Grundfos Remote
Management), or in mode 5 (GiC), the firewall must
accept connections initialised by the Grundfos
product to the Internet only (outgoing connections).
1
2
Secure connectivity for CIM 500
Pos.
Description
1
Grundfos device
2
Firewall
3
Internet
For CIM 500 in mode 5, GiC (Grundfos iSolution
Cloud), the ports 443 and 8883 must be open for
outbound traffic only and require access to DNS or
port 53.
3
7