PM866 in RNRP monitor through NE870
Hello,
I have test environment with AS/CS/DC server NE870 and PM866 controller. NE870 splitting client/server network from control network. I managed to configure NE870 so I am able to to ping controller from the server, I am able to connect controller in the OPC server and even load application and go online.
For some reason, I am not able to see the controller in RNRP network status tool on the server. Is this normal behaviour or am I missing something here?
AS/CS/DC
IP:172.16.4.11 /22
GW:172.16.4.141
NE870
IP:172.16.4.141 /22, 172.16.80.141 /22
Routes:
C>* 127.0.0.0/8 is directly connected, lo
C>* 172.16.4.0/22 is directly connected, vlan101
C>* 172.16.80.0/22 is directly connected, vlan210
C>* 172.17.4.0/22 is directly connected, vlan102
C>* 172.17.80.0/22 is directly connected, vlan211
C>* 192.168.8.0/24 is directly connected, vlan1
PM866
IP:172.16.80.154 /22
Thank you
Ondrej
Asked 3 months ago
Answers
0
Should work.
Try probing the controller (and NE870) with the RNRP Utility.
Use the "Get settings" and "Get network map" commands and post the results here.
Not likely, but possible scenario:
a) a bad RNRP Base Address or other explicit parameters set in controller is hindering RNRP from starting.
b) controller has NE870 set as default gateway (and know how to respond on ping & accept download)
To use implicit adressing mode in controller, only fill in IP address and mask on Eth1 and Eth2, leave all other fields at default (except for Eth2 Enable which must be true)
Try probing the controller (and NE870) with the RNRP Utility.
Use the "Get settings" and "Get network map" commands and post the results here.
Not likely, but possible scenario:
a) a bad RNRP Base Address or other explicit parameters set in controller is hindering RNRP from starting.
b) controller has NE870 set as default gateway (and know how to respond on ping & accept download)
To use implicit adressing mode in controller, only fill in IP address and mask on Eth1 and Eth2, leave all other fields at default (except for Eth2 Enable which must be true)
0
Answered 3 months ago
0
Hello Stefan,
So, please find screenshots with config below and also enclosed NE870 configuration (.cfg file from download center, just added some FW rules). I did everything you suggested, but I can still see only the server in RNRP monitor. I tried to delete default GW, but I lost connection to controller immediately, so I put it back.
One more thing I forgot to mention, AS/CS/DC server is a VM running in VMware Workstation Player on my laptop, using Bridged connection directly to the physical network. Could maybe this cause the problem?
Any additional suggestions will be much appreciated. Thank you
RNRP
IGMP
IP Forwarding
Controller
Eth1
Eth2
So, please find screenshots with config below and also enclosed NE870 configuration (.cfg file from download center, just added some FW rules). I did everything you suggested, but I can still see only the server in RNRP monitor. I tried to delete default GW, but I lost connection to controller immediately, so I put it back.
One more thing I forgot to mention, AS/CS/DC server is a VM running in VMware Workstation Player on my laptop, using Bridged connection directly to the physical network. Could maybe this cause the problem?
Any additional suggestions will be much appreciated. Thank you
RNRP
IGMP
IP Forwarding
Controller
Eth1
Eth2
Answered 3 months ago
0
IGMP on VLANs is disabled. I tried to connect with putty and running tcpdump and there seems to be some communication running, but I am not able to tell if that's how it should behave, could you clarify, please?
And yes, I am running the VM on an ABB laptop with McAfee, but I am not able to turn it off. Need to check with our IT.
tcpdump vlan101
tcpdump vlan210
And yes, I am running the VM on an ABB laptop with McAfee, but I am not able to turn it off. Need to check with our IT.
tcpdump vlan101
tcpdump vlan210
Answered 3 months ago
0
The capture from vlan101 of the NE870 display healthy (periodic, every 1 second) multicasts from 172.16.4.11.
-> The virtual machine "reach out".
However, the NE870's own multicasts must also reach the virtual machine on the inside of VMware Workstation.
That traffic is subject to be blocked by a firewall running in the laptop.
The ABB MCE McAfee firewall can be temporarily disabled, at least on my laptop.
-> The virtual machine "reach out".
However, the NE870's own multicasts must also reach the virtual machine on the inside of VMware Workstation.
That traffic is subject to be blocked by a firewall running in the laptop.
The ABB MCE McAfee firewall can be temporarily disabled, at least on my laptop.
0
I cannot turn it off as it requires password, but you are right, just checked a log and it is blocking UDP communication on port 2423. So I guess that's it. I will try to solve it with IT and I will let you know how it went. Anyway, thank you very much for your support. Cheers
Answered 3 months ago
1
Hi Stefan,
So I requested temp password for my McAfee and turned the FW off once I got it. Everything works now. Let me thank you one more time for your support.
So I requested temp password for my McAfee and turned the FW off once I got it. Everything works now. Let me thank you one more time for your support.
Answered 3 months ago
Add new comment