MODBUS/Node Red - Poor Security

onepointbrewing · June 28, 2023, 2:28am

Hey Modbus ppl…

Am I correct in saying that Modbus is really insecure over TCP as the packets are easily found using stock packet sniffers?

How would I go about securing my ethernet Modbus TCP network? I am using the Node Red Flex Getter nodes and there doesnt appear to be anything that even allows for packet encryption despite my ethernet-422 hub supporting TLS. This obviously opens things up to a compromized network, packet sniffing and MiM attacks.

tom_l · June 28, 2023, 3:18am

You could connect an ESPHome device to your modbus controller and use that an an intermediary between modbus and Home Assistant. ESPhome supports noise encryption.

onepointbrewing · June 28, 2023, 7:13am

Now that might be an idea??? Thanks @tom_l

Now to go and investigate modbus on esphome. esphome is easy, modbus diy - not so easy