The optional mGuard OPC Inspector license enables Stateful Inspection firewalling to be applied to the OPC classic protocol which is widely used in industrial networks.
OPC Classic and firewalls
The basic concept of OPC Classic (i.e. not using fixed TCP port numbers, but instead negotiating new port numbers within the first open connection) means that intermediary firewalls can only be used with wide-open gates, meaning they have virtually no effect. In addition, the communicated client and server IP addresses within the OPC connection entail that conventional NAT (network address translation) routing cannot be used. The mGuard OPC Inspector counters this problem by using deep packet inspection for OPC Classic.