All labs

LAB-04 · HMI / RDP · 443/tcp

HMI hardening: zone and conduit design with View ME

The plant is recovering from CVE-2024-37369 (FactoryTalk View ME RCE). Stand up the patched HMI, then defend it with a zone-and-conduit diagram and corresponding pf ruleset.

Duration

90m

Level

intermediate

ISA SL

SL2 · SL3

Track

ot defense

Certification path

Objectives

  1. 01Design a Level 3.5 DMZ for HMI traffic
  2. 02Patch the View ME RCE in a sandboxed copy
  3. 03Write firewall rules that survive the audit

Success criteria

  • A zone diagram annotated with 62443-3-2 risk levels
  • A working pf ruleset that allows only HMI ↔ historian flows
  • Patched View ME confirmed by a re-test of the original PoC