Vous êtes sur la page 1sur 42

CH Iss 5.

10
21/05/2008
Copyright:
2008 Trend Control Systems Limited,
Horsham, West Sussex, U.K.

All rights reserved. These training notes contain


confidential and proprietary information which is
protected by copyright. No part of these training
course notes may be reproduced, transcribed, stored
in a retrieval system, translated into any language, or
transmitted in any form whatsoever without the prior
written permission of Trend Control Systems Limited.

Please note that whilst every care is taken in the


preparation of these notes the definitive source of
information remains the appropriate technical
publication: datasheet, installation instruction or
product manual.

Trend Control Systems Limited reserves the right to


revise this publication from time to time and make
changes to the content hereof without obligation to
notify any person of such changes.
Company Profile

Trend Control Systems Limited


Trend is one of the worlds leading Building Management Systems manufacturers,
with a worldwide distribution and support network covering over 50 countries. Its
fully integrated control solutions are able to meet the most complex requirements of
modern buildings.
Founded in 1980, Trend has undergone rapid and consistent growth, achieving turnover
in excess of $90m in 2007 (product supply). Trend is a BSI registered company,
complying with the requirements of BS EN ISO 9001: 2000. This quality assurance
standard covers the sales, marketing, design, manufacture and support of Building
Management Systems. Through close control and monitoring of heating, ventilation,
air conditioning and other building services, Trend systems are able to minimise
energy consumption and maintain consistently comfortable conditions as well as
bringing other key benefits such as lower plant maintenance costs.
Systems are to be found in virtually every type of non-residential building, from
schools, hospitals and leisure centres to office blocks, shops and factories. Suitable
for the largest building complexes and multi-site applications, they are still cost-
effective even in very small premises.
Trend control systems are supplied, engineered and commissioned by approved
systems integrators. A significant number of these specialist controls companies have
qualified as Trend Technology Centres, a status they have achieved by demonstrating
they can meet defined high standards of workmanship, contract management,
documentation and quality control. All are subject to regular audit to ensure these
standards are being maintained.
Trend understands that every business has unique requirements, so our philosophy of
service in the UK is to offer flexibility and choice through a range of tailored Service
Level Agreements (SLAs). Supported 24/7 by a nationwide network of skilled
engineers, we offer a range of services which are available to both installers and end
users and cover both Trend and other manufactured systems. Furthermore, the ongoing
monitoring of energy consumption and environmental conditions optimizes plant
operation and reduces associated energy costs whilst ensuring that comfort conditions
are maintained. The Trend package of advanced products, specialist services and a
tried and tested route to market, not only provides systems that are fit for purpose but
also ensures lowest lifetime costs.
For more information please visit www.trend-controls.com

Section 0 - Page 4 of 8 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Major Clients

Retail Sector Health Sector


- J.Sainsbury - Leeds General Infirmary
- Superdrug - Great Ormond St. Hospital
- B&Q - King Edward VII, Sheffield
- Asda/Walmart - The London Hospital
- W.H.Smith - St. Bartholomews Hospital
- BHS - Royal Marsden Hospital
- Metro Centre, Gateshead - Derriford Hospital
- Morrison/Safeway - St. Georges Hospital
- Netto - Whittington Hospital
- Princess Royal Hospital
- City Hospitals, Sunderland
Hotel Sector Commercial Sector
- Marriott Hotels - Abbey National
- The Ritz - National Westminster Bank
- The Savoy - Land Securities
- Mandarin Oriental Hotels - Prudential Insurance
- Raddisson Hotels - British Airways
- Union Bank of Switzerland
- M.E.P.C
- Royal Bank of Scotland
- Lloyds/TSB
Industrial Sector Public Sector
- Rolls Royce - The Post Office
- Proctor & Gamble - British Library
- Unilever - BBC
- Hewlett Packard - BAA
- B.P - Dorset County Council
- Kodak - Southampton University
- Leeds University
- University College, London
- Kings College, London
- Imperial College
FM/EMSco Sector - University of Hertfordshire
- Dalkia - Palace of Westminster
- London Eye
- Imperial War Museum
- National Gallery, London

Pharmaceutical Sector Public (PFI Sector)


- GSK - Jarvis
- Pfizer - Interserve
- Wyeth - Kajima
- Group 4 Global Solutions
- HBG
- AWG

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 0 - Page 5 of 8
Networking And The ISO/OSI 7 Layer Model

Network definition: The interconnection of


devices to share information.

To provide a framework for the development of


standards for computer networks, the
International Standards Organisation (ISO)
developed the Open System Interconnection
(OSI) seven layer model.

7 Application
6 Presentation
5 Session
4 Transport
3 Network
2 Data-Link
1 Physical

The seven layer model removes the need for the


end user to use one specific vendor. Network
cards and software designed to meet the OSI
model can reliably interconnect.
Section 1 - Page 2 of 6 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
OSI 7 Layer Model

Each layer performs a different task.

7 Application
6 Presentation
5 Session
4 Transport
3 Network
2 Data-Link
1 Physical

Layer - 7 Application - The user interface and end


applications e.g. 963, web browsers, ftp, e-mail.
Layer 6 Presentation - Handles different PC and file
formats, protocol conversions e.g. ASCII to EBCDIC.
Layer 5 Session - Synchronises communications between
devices e.g. Trend comms, NetBIOS names.
Layer 4 Transport - Sends the information in the correct
sequence, error checks and re-assembles data in the correct
order.
Layer 3 Network - Sorts messages and sends them to the
correct device using IP addresses.
Layer 2 Data-Link - Defines the access sharing for
different media using MAC addresses.
Layer 1 Physical - Defines the actual physical and electrical
characteristics of the network.
Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 1 - Page 3 of 6
Ethernet, TCP/IP And The Seven Layer Model

Although Ethernet and TCP/IP conform to the


seven layer model there is not an exact match
and the seven layers can usually be simplified
to four.

ISO 7 Layer Model TCP/IP


7 Application
6 Presentation 4 Application
5 Session
4 Transport 3 Transport
3 Network 2 Internet
2 Data-Link Network
1
1 Physical Interface

Typical components responsible for each layer.

TCP/IP Responsibility
963,
4 Application
3xtend,IQ3xcite
3 Transport TCP/UDP
2 Network IP

Network Network cards


1
Interface and drivers

Section 1 - Page 4 of 6 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Protocol Layers - Encapsulation

As the 'raw' data is passed down through the


layers each layer adds its own header and
check sum (CRC).

Data

TCP
Segment CRC
Header

IP
Header Packet CRC

Ethernet
Header Frame CRC

These headers ensure that the data is


transferred to the correct destination without
corruption and in the correct sequence.

Transmitted Data Received Data


travels down the stack travels up the stack
Data Data

TCP TCP
Segment CRC Segment CRC
Header Header

IP IP
Header Packet CRC Header Packet CRC

Ethernet Ethernet
Frame CRC Frame CRC
Header Header

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 1 - Page 5 of 6
This page is intentionally blank

Section 1 - Page 6 of 6 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Network Standards - 10 Base F

This standard also uses a star topology


There are two common standards which use
multi-mode fibre-optic cable.
Transceivers convert from fibre-optic to 10Base
T connection.

2000m
transceiver

Drop
cable

Used Used between Used between


Data
Standard between Repeaters/Hubs Device and Distance
rate
Devices (Backbone) Repeater/Hub
10BaseFL 10Mb/s 9 9 9 2km
160m to 2km
100BaseFX 100Mb/s 8 9 9
depending on use.

Multi Mode - Distance datacomms 2km, L.E.D. transceiver.

Although not used in this standard:


Single Mode - Distance telecomms 5km, small cable hard to
terminate, laser transceivers.
Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 2 - Page 7 of 14
The Physical Or Hardware Address

Most network devices need a unique hardware


address on the network.
This is called the Media Access Control (MAC)
address, sometimes known as the physical
address.
The MAC address consists of 12 hex digits and
is unique the world over.
The first six digits identify the manufacturer
and the last six resemble a serial number for
each device.
e.g. 00:10:70:xx:xx:xx
Trend's manufacturer number is shown above,
all Trend Ethernet devices start with this
number, and all have unique MAC addresses.
The MAC address is used for Ethernet
communications at the lowest level as can be
seen on the next page.

Section 2 - Page 8 of 14 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Address Resolution Protocol

Address resolution protocol (ARP) allows the


software (IP) address to be mapped to the
MAC address.
A B

1) Device A needs to communicate with device B and


knows B's IP address. A sends out a broadcast to all
devices with MAC addresses.
2) All devices see the broadcast but only the device
with the matching IP address responds. B responds
and sends its MAC address to device A.
3) A now transmits the data to B using MAC
addressing and stores B's MAC address in its ARP
cache for future use.

ARP is used in all Ethernet LAN comms, but is transparent


to the user. Trend utilise ARP when using the iP Tool for
setting up IP addresses, we will see this later.

A Broadcast transmission will go to all devices on a


network unless we take steps to limit it to one area.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 2 - Page 9 of 14
Ethernet Media Access Control

Media access control defines how a device


identifies if it can transmit on the network.
Ethernet typically uses a first-come-first-served
contention system known as:
Carrier sensed multiple access with collision
detection, abbreviated to CSMA/CD.

POW!

1) The network is monitored, if it's free transmission will


begin. If it's busy the transmission is deferred.
2) During transmission the device monitors for a collision,
if this is detected a jam signal is sent.
3) The jam signal causes all the devices to stop
transmitting. Devices then wait a random time before
transmitting again.

When using hubs or repeaters on a network


one collision domain is created.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 2 - Page 13 of 14
This page is intentionally blank

Section 2 - Page 14 of 14 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Repeater - A Physical Layer Device

A repeater simply repeats the messages. It


works at the bit level regenerating and re-
timing the signals.
A repeater connects two segments in the same
network. Therefore it allows the extension of
cables beyond the normal limitations of their
length. 10Base5
500m 500m
T T

Repeater
Host A Host B
Segment A Segment B
10BaseT networks use 'Hubs' as repeaters, with
the same effect.
100m 10BaseT 100m

HUB
Host A Host B
Segment A Segment A
There is a limit to the number of repeaters
installed on a network.
Section 3 - Page 2 of 10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Dual-Speed Hub - A Physical Layer Device

Dual speed hubs are used for connecting


segments which may be operating at different
speeds.
100m

Dual speed
Network Hub Network
Running Running
At 10mb/s At 100mb/s

Host A Host B
Segment A Segment A

Some hubs have one port with a different


speed, but most auto-configure to the required
speed for the segment.
A dual speed hub may be labelled 10/100/1000
if it supports all three speeds.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 3 - Page 3 of 10
Switch - A Data-Link Layer Device

Switches can be used to segregate networks.


They automatically generate a map of MAC
addresses and unlike conventional hubs they
only transmit messages to the appropriate port.
Host A Host B
00:68:AF:36:89:15:AB 10:78:AB:35:96:35:BB

Host C Host D
00:68:AF:61:87:45:BF 02:56:1B:46:86:65:BC

Entry
MAC Address Port No.
No.

Switch 1 00:68:AF:36:89:15:AB 2
2 10:78:AB:35:96:35:BB 3
3
4

Messages from device A to device B will be


passed to the correct port. This will leave the
other ports clear for devices C and D to
communicate.
The MAC table is typically stored for five
minutes before it is purged.
Section 3 - Page 4 of 10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Industrial Rated Network Equipment

Industrial rated network equipment is designed


to operate in the harsh environment found in
electrical panels.
Most industrial devices have DIN rail
mounting, standard supply voltage, dual power
supply connections and fault outputs.
The EDA-205 is a 5 port switch
capable of learning 1024 MAC
addresses, 24V AC or DC.

The IMC-101 media convertor


10/100BaseT to 100BaseFX.
100BaseFX
2000m
10BaseT 10BaseT
100m 100m

Media Media
Convertor Convertor

The EDS-305 is a 5 port switch


with 4 x 10/100BaseT and 1 x
100BaseFX. This allows increased
distance between switches to be
achieved.
Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 3 - Page 5 of 10
Managed Network Equipment

The simple network management protocol (SNMP) is used


by network management systems for monitoring network-
attached devices for conditions that warrant administrative
attention. It resides in the application layer of the OSI 7
layer model.
Network statistics
Network can be requested.
Management
Software
Alarms (Traps) can be
sent when faults occur.

Management
Information
Base (MIB)

Typically this means using managed hubs or switches that


support the SNMP protocol.
For a standard BMS network this form of management is
not required. However, for larger networks and networks
integrating with IT departments SNMP management
would be used.
Other uses of SNMP:
Monitoring device uptimes and network traffic volume.
Automated inventory of equipment.
Collect interface and device information, e.g. host
names.
Section 3 - Page 6 of 10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
The Router - A Network Layer Device

A router is used to link two networks together.


It is used to direct network traffic based on the
network IP address.
As a router give one network the capacity to
contact hosts on another network it is can also
be called a Gateway.

Ethernet device
or HOST

ROUTER or
GATEWAY
HOST

A router holds a database called a routing table


and forwards messages to the networks defined
in its table.
Routers do not allow broadcast tranmissions to
pass from one network to the other.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 3 - Page 7 of 10
This page is intentionally blank

Section 4 - Page 6 of 6 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Network Layer (3) - IP Addresses

An IP address is a software address used to identify a host


on the network. The address cosists of four numbers in the
range 0 to 255 separated by three dots. One number is
sometimes called an octet.

Sample IP address - 171.192.57.11


However, computers work in binary so the four eight-bit
numbers (or octets) can also be seen as a single 32-bit
number.
Usually, the first two numbers set the network address and
the second two numbers identify the host.
This is similar to the format of a telephone number where
the first part of the number identifies the town, and the
second part the individual phone.
10101011 11000000 00111001 00001011
Network ID Host ID
171.192 57.11
Network ID Host ID
Rules:
1 The network ID, must be the same for each device
on the same physical network.
2 The host ID, must be unique for each device on the
same physical network.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 5 - Page 3 of 14
Network Layer (3) - Who Assigns The Address?

The Internet Assigned Numbers Authority


(IANA) assigns addresses to PCs attached to
the internet. These would be normally be
recieved via the ISP.
Public IP address
assigned to device
by ISP

ISP

ISP WWW ISP

IANA

If a network is not connected to the internet, or


connection is via a firewall, then any IP address
can be assigned.
Public IP address
assigned to firewall
by ISP

Router/Firewall ISP
IQ 3xcite

ISP WWW ISP

Private Internal
IANA
Addressing
Scheme
Any messages destined for the
Internet are translated via the Firewall.

Note: If the site has its own IT department get


them to assign an IP address for each device.
Section 5 - Page 4 of 14 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Network Classes - Theory

There are three different network classes of IP


address used on the internet.
Class A = Used by very large networks up to
16,774,214 hosts.
Class B = Also used by large networks up to
65,534 hosts.
Class C = Small network up to 254 hosts.
There are some rules on the numbers used by
the different classes.
Class 1st Octet 2nd Octet 3rd Octet 4th Octet
Network
A Host Host Host
1-126
Network
B Network Host Host
128-191
Network
C Network Network Host
192-223

For example
131.57.52.117 = Class B
216.225.240.4 = Class C

All devices on the same network segment must


have the same network address.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 5 - Page 5 of 14
Network Classes - Theory

Two examples of an incorrect and correct IP


address using a class C network.
WRONG:

192.170.57.11 192.170.58.12
Same Physical Network 9
Same Network ID 8

RIGHT:

192.170.57.11 192.170.57.12
Same Physical Network 9
Same Network ID 9

Section 5 - Page 6 of 14 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
This page is intentionally blank.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 5 - Page 9 of 14
The Subnet Mask

A PC has no way of knowing what class its IP


address is.
The subnet mask is used to tell the computer
which parts of its address are the network ID
and which are the host ID.
The number 255 in a subnet mask indicates the
network ID and the 0 indicates host ID.
For example if the subnet mask is 255.255.255.0
then this is a class C network, the 255's tell us
that the first 3 octets are used for the network
address. The 0 tells us this is the only octet that
can be used for the host address.
e.g.
IP Address = 128. 10. 11. 23
Subnet mask = 255.255. 0. 0
We can see this is a class B IP address, and in
decimal:

Network ID Host ID
128.10 11.23

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 5 - Page 11 of 14
Host Name

As IP addresses are made up of four groups of numbers


they can be hard to remember.
The computer can be given a host name to identify it on the
network in addition to its IP address.
This can be a friendly name such as:
TrainersPC
Server
Windows XP calls the host name 'Computer name' as
shown above.
Spaces and some characters are not allowed in host names.

Section 6 - Page 2 of 16 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Assigning An IP Address To A PC

Go to 'Start' then 'Settings' and click 'Network


Connections.'

In the Network Connections window right click 'Local


Area Connection' and click 'Properties.'

This will bring up the Properties dialogue box shown on


the next page.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 6 - Page 3 of 16
Assigning An IP Address To A PC

1. Click 'Internet
Protocol (TCP/IP)'
and then
'Properties'

2. Choose "Use
the following IP
address".

3. Type in the IP address and subnet mask. Set up the


default gateway if required.
4. Click 'Advanced'

Section 6 - Page 4 of 16 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Routing tables
The diagram below shows four routers in a large network. One of the routers has
an empty routing table. Study the completed routers and use this information to fill
in the empty table.
An address of 0.0.0.0 in a table picks up all networks not otherwise listed and is
used for global addressing.

Network ID =
192.21.34.0
Router 1

192.21.34.21 Network Gateway Netmask


192.21.34.0 Direct 255.255.255.0
192.21.140.0 Direct 255.255.255.0
192.21.140.20
0.0.0.0 192.21.140.16 255.255.255.0

Network ID =
192.21.140.0
Router 2
Network Gateway Netmask 192.21.140.16
192.21.34.0 192.21.140.20 255.255.255.0
192.21.140.0 Direct 255.255.255.0
192.21.1.16
192.21.1.0 Direct 255.255.255.0
0.0.0.0 192.21.1.15 255.255.255.0

Network ID =
192.21.1.0
Router 3
Network Gateway Netmask
192.21.1.15 192.21.34.0 192.21.1.16 255.255.255 .0
192.21.140.0 192.21.1.16 255.255.255.0
192.21.64.2 192.21.1.0 Direct 255.255.255.0
192.21.64.0 Direct 255.255.255.0
0.0.0.0 192.21.64.1 255.255.255.0

Network ID =
192.21.64.0
Router 4 192.21.64.1
Network Gateway Netmask
192.21.34.0 192.21.64.2 255.255.255.0
200.16.34.12
192.21.140.0 192.21.64.2 255.255.255.0
192.21.1.0 192.21.64.2 255.255.255.0 INTERNET
192.21.64.0 Direct 255.255.255.0
0.0.0.0 200.16.34.20 255.255.255.0

Section 6 - Page 10 of 16 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
This page is intentionally blank.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 6 - Page 11 of 16
Using Trace Route

Trace Route (TRACERT) will list all the routers between


you and a remote host.
Open a command window and type in TRACERT followed
by the IP address or host name you want to trace.
e.g. TRACERT 171.192.11.8

The TRACERT command will map and identify each step


in the network route (i.e. all the routers) to the destination
address.

Exercise - Tracert
1. Open a command window on your PC and use TRACERT directed to a PC on
the other side of the room. We only have one router so you will see only one hop.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 6 - Page 13 of 16
Transmission Control Protocol

E
IQ == XCITE

=3 xtend

IQ
1 2 3 4 5 6 7 8 9 10

Transmission Control Protocol (TCP) creates a


communications session between two devices.
It ensures that a connection exists before any
data are transferred.
It error checks and sequences the data.
Trend uses TCP to connect 963 or SET running
on a PC to an IQ3 or 3xtend.

Section 9 - Page 2 of 10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
User Datagram Protocol

Virtual I/N Ethernet

IQ == XCITE IQ == XCITE
E E

EINC EINC
1 2 3 4 5 6 7 8 9 10 1 2 3 4 5 6 7 8 9 10

LAN LAN Virtual


1 4 LAN 5

User Datagram Protocol (UDP) is used


predominately for broadcast messages.
It is classed as an unreliable message protocol
as there is no session for data transfer and there
is no acknowledgement of messages.
Trend uses UDP to create virtual Lans and
internetworks.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 9 - Page 3 of 10
Sockets And Ports

Port: Identifies the target application we wish


to communicate with:
Common port numbers are:
SMTP = 25
FTP = 21
HTTP = 80
963 Client/Server = 80
Ports are usually hidden. When browsing the
web we are normally connecting to applications
that use HTTP, so Internet Explorer defaults to
adding port 80 to your address.
Socket: For data to be transferred between
devices both the target device and application
(software) must be known.
e.g. 171.192.56.7: 80

IP finds the device Port finds the software
application


Therefore a socket defines the full
communications path.

Section 9 - Page 4 of 10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
Transport Layer - Ports & Sockets

IE 963
171.192.56.10 171.192.56.7

To log in to the 963 server on the right the Internet


Explorer client on the left will use the socket
171.192.56.7:80.
Remember the communications are sent to a device and
port number.
The receiving device will know what application to pass the
information to.
Sockets can use the host name as well, e.g.: Boiler_IQ3:80
There are 65536 ports, most allocations are controlled by
IANA.
Ports commonly used by Trend are:
FTP = 21
963 Client/server = 80
963 Alarms = 2774
Ethernet internetwork = 57612
Trend also use ports to communicate with virtual CNCs.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 9 - Page 5 of 10
This page is intentionally blank.

Section 9 - Page 10 of 10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
What is a Firewall?

WAN

A firewall provides a proxy connection between two


networks, usually an internal network and the Internet.
The firewall allows the internal network to be protected
from unauthourised access from outside the organisation.

Firewall

Local Blocked Internet


Network Allowed

Blocked
Allowed

Firewalls work through a series of 'rules' which have to be


set up.
Firewalls also provide a single 'choke point' where security
and auditing can be imposed.
Section 10 - Page 2 of 4 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
How Firewalls Work

Firewalls offer many different types and methods of


protection. Two common methods are dynamic address
allocation and packet-filtering.
Dynamic Address Allocation:
Also known as network address translation (NAT), the
firewall will replace the source address of any outgoing
message with it's own address. The reply messagae is sent
to the original source address.
A Firewall
IP address pool
171.16.1.1 2) Firewall allocates IP
address from a registered
company pool. 200.200.1.X
1) A message from A to B will
have the source address
replaced with 200.200.1.1

WAN

B
3) The reply from B will be sent to
200.200.1.1, therefore the firewall
will forward this to A.

The internal network addresses are not visible on the


internet which has two benefits: they do not need to be
registered with the IANA and they are kept secure.

Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Section 10 - Page 3 of 4
How Firewalls Work

Packet-Filtering Firewalls:
The firewall is set up to block communications between the
two networks unless a rule is configured. The rule is based
on port number, source and destination IP address.

171.16.10.2 171.16.10.3

Firewall Pool
171.16.10.5 201.200.10.X
171.16.10.1

EINC
1 2 3 4 5 6 7 8 9 10
WAN

AD = 25 Vcnc
Port 10025

IQ
1 2 3 4 5 6 7 8 9 10
Fixed IP
address for BMS
Bureau @ 199.100.5.1

Source IP Source Port Destination IP Destination


Rule Interface Protocol
Address Number Address Port Number
1 Internal TCP 171.16.10.0 0 0.0.0.0 80
2 Internal TCP 171.16.10.0 0 195.92.200.130 25
3 Internal TCP 171.16.10.1 2774 199.100.5.1 2774
4 External TCP 199.100.5.1 10025 201.200.10.1 10025

The rules in this table are configured to allow internal


devices to browse the WEB, send email, for EINC alarms
and for Trend virtual CNCs.
Section 10 - Page 4 of 4 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Ethernet Awareness Iss 5.10
10BaseT FAQs
Q. What are the pin connections used on a RJ-45
connections for 10BaseT?
A.
Pin Colour Pair Description
PC Straight-Thru HUB 1 White/Orange Pair 2 TX+
TX+ 1 1 RX+
2 Orange Pair 2 TX+
TX- 2 2 RX-
3 White/Green Pair 3 RX+
RX+ 3 3 TX+
4 4 4 White/Blue Pair 1 Not Used

5 5 5 Blue Pair 1 Not Used


RX- 6 6 TX- 6 Green Pair 3 RX-
7 7 7 White/Brown Pair 4 Not Used
8 8 8 Brown Pair 4 Not Used

Q. What is a 10BaseT crossover cable?


A. A normal 10BaseT cable allows connection between a
device and a HUB, a crossover cable allows devices to
be directly connected e.g. P.C. to P.C. as the name
suggests it crosses the TX & RX.

Q. What are the pin connections on an RJ45 Crossover


cable?
A.
PC Cross-over HUB
TX+ 1 1 RX+
TX- 2 2 RX-
RX+ 3 3 TX+
4 4
5 5
RX- 6 6 TX-
7 7
8 8

0It is vital the correct terminations and pairs are twisted,


it is best to purchase manufactured cables (including
strain relief) to prevent intermittent network problems.
Ethernet Awareness Iss 5.10 2008 Trend Control Systems Limited, Horsham, West Sussex, U.K. Appendix - Page 3 of 12

Vous aimerez peut-être aussi