Eaton XNE-GWBR-2ETH-MB, User Manual

Page 1: ...10 2011 MN05002008Z EN User Manual XI ON XNE GWBR 2ETH MB Gateway...

Page 2: ...G CH 9008 St Gallen All rights reserved also for the translation None of this document may be reproduced or processed duplicated or distributed by electronic systems in any form print photocopy microf...

Page 3: ...the automation devices Ensure a reliable electrical isolation of the low voltage for the 24 volt supply Only use power supply units complying with IEC HD 60364 4 41 DIN VDE 0100 Part 410 Deviations o...

Page 4: ...Z EN www eaton com All work relating to transport installation commissioning and maintenance must only be carried out by qualified personnel IEC HD 60364 DIN VDE 0100 and national work safety regulati...

Page 5: ...Ethernet 23 3 1 System description 23 3 1 1 Ethernet MAC ID 23 3 1 2 IP address 23 3 1 3 Network classes 24 3 1 4 Data transfer 24 3 1 5 Checking the communication via ping signals 25 3 1 6 ARP Addre...

Page 6: ...of registers 66 5 6 2 Indirect writing of registers 67 5 7 Bit areas mapping of input discrete and coil areas 68 5 8 Error behavior of outputs 68 5 9 Parameters of the modules 69 5 9 1 Analog input m...

Page 7: ...tending an existing station 146 7 7 Firmware download 147 7 7 1 DIP switch position 147 8 Guidelines for Electrical Installation 149 8 1 General notes 149 8 1 1 General 149 8 1 2 Cable routing 149 8 1...

Page 8: ...Table of contents 8 XI ON XNE GWBR 2ETH MB 10 2011 MN05002008Z EN www eaton com...

Page 9: ...devices the maximum system extension etc The bus independent I O modules for XI ON as well as all further field bus independent chap ters such as mounting labelling etc are described in separate manua...

Page 10: ...and to the facility This sign means for the operator work with extreme caution Attention This sign can be found next to all notes that indicate a potential hazard This can refer to possible danger to...

Page 11: ...intenance guarantee the trouble free and safe operation of these devices 1 3 2 Notes concerning planning installation of this product Attention Please read this section carefully Safety aspects cannot...

Page 12: ...1 About this manual 1 3 Overview 12 XI ON XNE GWBR 2ETH MB 10 2011 MN05002008Z EN www eaton com...

Page 13: ...XI ON station and the other field bus stations The communication within the XI ON station between the gateway and the individual XI ON modules is regulated via an internal module bus 2 1 1 Flexibilit...

Page 14: ...clamp or screw connection The electronics modules can be plugged or pulled when the station is being commissioned or for maintenance purposes without having to disconnect the field wiring from the bas...

Page 15: ...ratio Further advantages of the XNE ECO gateways At the moment available for PROFIBUS DP CANopen Modbus TCP and EtherNet IP Low required space width 34 mm 1 34 inch Integrated power supply Can be com...

Page 16: ...rt of the connected I O modules Additionally the field voltage distributed via the system interne current rail system is fed by the further voltage UL Because of this a XN GWBR gateway does not requir...

Page 17: ...I O functions of the XI ON modules power supply modules digital and analog input output modules and technology modules XN standard electronics modules The XN standard electronics modules are plugged...

Page 18: ...g width required for typical applica tions All advantages at a glance Space saving thanks to up to 16 channels on 13 mm 0 51 inch width Cost saving thanks to electronics with integrated connection lev...

Page 19: ...d wiring is connected to the base modules The base modules are constructed as terminals in block and slice designs Base modules are available in versions with 3 4 or 6 connection levels in tension cla...

Page 20: ...mounted into the end plate ensures that the XI ON station remains secure on the mounting rail even when subjected to vibration 2 2 6 End bracket A second end bracket to the left of the gateway is nec...

Page 21: ...base module with 4 connection levels They can be used to connect potentials in relay modules bridging the relay roots thus considerably reducing the amount of wiring 2 2 8 Marking material Labels for...

Page 22: ...connection using an attachment SCH 1 WINBLOC on the gateway 2 2 10 Shield connection 2 pole for analog modules The 2 pole shield connection can be used to connect signal cable shielding to the base m...

Page 23: ...MAC ID can be read out using the software tool I O ASSISTANT 3 1 2 IP address Each Ethernet host receives its own IP address In addition to that the node knows its netmask and the IP address of the de...

Page 24: ...ransport protocol The protocol does not use acknowledgement messages telegrams can get lost It is thus not suitable for safe data transfer The main functions of the internet protocol are the addressin...

Page 25: ...ion Header which enables the server to clearly interpret the received Modbus parameters and commands The Modbus protocol is thus part of the TCP IP protocol 3 1 5 Checking the communication via ping s...

Page 26: ...rnal tables Using ARP in the DOS prompt every node in a network can be clearly identified via its MAC ID Write a ping command for the respective station IP address example x ping 192 168 1 100 Via the...

Page 27: ...technical features are independent of the implemented protocol The chapter describes the technical data the connection possibilities the addressing of the gateway etc 4 2 Function The gateway is the c...

Page 28: ...ew A LEDs for XI ON module bus B service interface C DIP switch for field bus addres sing D DIP switch for operation mode E DIP switch for configuration storage F LED for the Modbus commu nication G E...

Page 29: ...eral tech nical data of a station Maximum system extension 32 modules XN XNE in slice design or max length of station 1 m Supply voltage auxiliary voltage Field supply UL nominal value range 24 V DC 1...

Page 30: ...ting via DIP switches 20 to 27 Service interface mini USB Insulation voltages USYS to service interface USB UL USYS to Ethernet 500 Vrms ETH1 to ETH2 500 Vrms Ambient conditions Ambient temperature Op...

Page 31: ...es sary Electromagnetic compatibility EMC according to IEC EN 61000 6 2 Industry Static electricity according to IEC EN 61000 4 2 Discharge through air direct 8 kV Relay discharge indirect 4 kV Electr...

Page 32: ...le 4 Technical data for the Push in tension clamp terminals Designation Measurement data according to VDE 0611 Part 1 8 92 IEC EN 60947 7 1 Protection class IP20 Insulation stripping length 8 0 to 9 0...

Page 33: ...he power supply via push in tension clamps 4 4 1 Power supply The XNE GWBR 2ETH MB provides an integrated power supply unit and push in tension clamps for field supply UL GNDL system supply USYS GNDSY...

Page 34: ...emale connector The service interface is used to connect the gateway to the project planning and diagnostic software I O ASSISTANT The service interface is designed as a 5 pole mini USB connection In...

Page 35: ...tion mode setting and for the storage of the station configuration are located under the gateway s upper label IP address 192 168 1 254 subnet mask 255 255 255 000 default gateway 192 168 1 001 Note T...

Page 36: ...tching from OFF to ON activates the storage of the station configuration see Chapter 4 6 Storing the station configuration Page 44 Note The position of the DIP switches 27 CFG and MODE is also importa...

Page 37: ...Example Bus address 50 0 32 00110010 Note All other network settings are stored in the module s non volatile EEPROM and can not be changed Note Pull the label upwards out of the housing in order to r...

Page 38: ...ON XNE GWBR 2ETH MB 10 2011 MN05002008Z EN www eaton com LED behavior During the module s start up the MS LED shortly becomes constant red After the successful start up the LED begins to flash green a...

Page 39: ...y relinquishes the address the address can be re assigned In manual allocation a client s IP address is assigned by the network administrator and DHCP is used simply to convey the assigned address to...

Page 40: ...up the module waits for the address setting via DHCP BootP server This is indicated by the red flashing MS LED The LED begins to flash green as soon as the address setting via the server is completed...

Page 41: ...ess 4 see Table 6 Combinations for the address switch settings Page 36 LED behavior During it s start up the module waits for the address setting via DHCP BootP server This is indicated by the red fla...

Page 42: ...access to the single station via the service interface at the gateway is possible as well The IP address as well as the subnet mask of the Ethernet gateways can be changed according to the application...

Page 43: ...eaton com 43 Figure 30 Changing the IP address Attention Please observe that if the system integrated Windows firewall is activated difficul ties may occur during the communication between the gateway...

Page 44: ...e Current Configuration as the Required Configuration Reference configuration Procedure Switching the DIP switch CFG from OFF to ON Starting of the storage process LED IOs flashes green 1 HZ LED IOs s...

Page 45: ...ication module bus LEDs GW and IOs 1 LED for the Ethernet communication field bus LEDs MS 2 LEDs for the state of the Ethernet connection at the Ethernet connectors ETH1 and ETH2 Table 7 LED displays...

Page 46: ...shing 1 Hz Non adaptable modification of the physically connected station Compare the planned XI ON station with the physical station Check the physical XI ON station for defective or incorrectly fitt...

Page 47: ...ON XNE GWBR 2ETH MB 10 2011 MN05002008Z EN www eaton com 47 ETH1 ETH2 Off No Ethernet link Check the Ethernet connection Green Link with 10 100 Mbps Green flashing Ethernet Traffic Yellow 100 Mbps if...

Page 48: ...4 Technical Features 4 7 Status indicators diagnostic messages gateway 48 XI ON XNE GWBR 2ETH MB 10 2011 MN05002008Z EN www eaton com...

Page 49: ...y protocol and offers services specified by function codes Modbus function codes are elements of Modbus request reply PDUs It is currently implemented using TCP IP over Ethernet that is used for the X...

Page 50: ...a message is sent from a Client to a Server device the function code field tells the server what kind of action to perform Function code 0 is not valid Sub function codes are added to some function c...

Page 51: ...t on the transaction function code It s obvious that all the data handled via Modbus bits registers must be located in device application memory Access to these data is done via defined access address...

Page 52: ...MN05002008Z EN www eaton com XI ON devices have only one data block whose data can be accessed via different Modbus functions The access can be carried out either via registers 16 bit access or for s...

Page 53: ...ves for reading multiple output bits 2 Read Discrete Inputs Serves for reading multiple input bits 3 Read Holding Registers Serves for reading multiple output registers 4 Read Input Registers Serves f...

Page 54: ...0 1006 ro gateway identifier 0 100C ro gateway status see Table 13 Register 100Ch gateway status Page 63 0 1010 ro process image length in bit for the intelligent output modules 0 1011 ro process imag...

Page 55: ...4 bytes per module ID 0 2900 to 0 29A0 ro reserved 0 2A00 to 0 2A20 ro actual module list 74 4 bytes per module ID 0 4000 to 0 47FF reserved 0 8000 to 0 8FFF ro process data inputs 128 64 Byte but max...

Page 56: ...put modules 0x1012 4114 44115 404115 process image length in bit for the digital input modules 0x1013 4115 44116 404116 register mapping revision 0x1017 4119 44120 404120 group diagnostics of I O modu...

Page 57: ...dule list 32 4 bytes per module ID 0x2A00 to 0x2A20 10752 to 10784 410753 to 410785 reserved 0x4000 to 0x47FF Slot related addressing process data inputs 32 64 bytes 0x8000 to 0x8400 Slot 1 0 8000 327...

Page 58: ...58 XI ON XNE GWBR 2ETH MB 10 2011 MN05002008Z EN www eaton com Description Hex Decimal 5 Digit Modicon parameters 32 64 bytes 0xB000 to 0xB400 Slot 1 0 B000 45056 445057 Slot 2 0 B020 45088 445089 Slo...

Page 59: ...output area The data byte arrangement is done according to the physical order in the station from the left to the right The data of the intelligent modules are followed by the data of the digital mod...

Page 60: ...for the relevant module or not 5 4 2 Packed output process data output register area 0800h to 09FFh 0000h 01FFh intelligent modules input data digital input modules status diagnosis free Note Indepen...

Page 61: ...DI 4 bit bit by bit XN 16DI 16 bit bit by bit XN 32DI 32 bit bit by bit XNE 8DI 8 bit bit by bit XNE 16DI 16 bit bit by bit digital outputs XN 2DO 2 bit bit by bit XN 4DO 4 bit bit by bit XN 16DO 16 b...

Page 62: ...2008Z EN www eaton com A The process data of the XNE 1SWIRE modules are mapped into the registers for the digital in and out put modules XN 1SSI 4 words 4 words word by word XNE 1SWIRE A 4 words 4 wor...

Page 63: ...settings made via the field bus 13 reserved 12 Modbus Wdog Error A time out in the Modbus communication occurred Module bus 11 I O Cfg Modified Error The I O configuration has been changed and is now...

Page 64: ...tile saving of parameters in registers 0 1120 and 0 1130 to 0 113B For this purpose write 0 7361 in register 0 113E To activate the saving of the registers write 0 7665 save within 30 seconds in regis...

Page 65: ...a area can contain additional parameters and or other data to be written Service response area After the execution of a request the registers service no service code and index addr in the response are...

Page 66: ...ode Meaning 0 0000 error free execution of service 0 FFFE service parameters incorrect inconsistent 0 FFFF service code unknown Note The services indirect reading of registers and indirect writing of...

Page 67: ...2 Indirect writing of registers 1 to 122 Count Modbus registers are written starting with address x Addr service request service response 2000h 2001h 2002h 2003h 2004h 2005h 207Fh service no 0 0000 0...

Page 68: ...e area All digital inputs are stored in this area offset 0 Mapping Coil area All digital outputs are stored in this area offset 0 5 8 Error behavior of outputs In case of a failure of the Modbus commu...

Page 69: ...A 1 Value representation 0 Integer 15bit sign A 1 12bit left justified 2 Diagnostics 0 release A 1 block Table 18 Module parameters A Default settings Byte Bit Parameter name Value 0 1 0 Current mode...

Page 70: ...1 Module parameters A Default settings Byte Bit Parameter name Value 0 2 0 Mains suppression Kx 0 50Hz A 0 60Hz 1 Value representation Kx 0 Integer 15bit sign A 1 12bit left justified 2 Diagnostics Kx...

Page 71: ...release A 1 block 3 Channel Kx 0 activate A 1 deactivate 7 to 4 Element Kx 0000 type K 270 1370 CA 0001 type B 100 1820 C 0010 type E 270 1000 C 0011 type J 210 1200 C 0100 type N 270 1300 C 0101 typ...

Page 72: ...rd A voltage 0 10V standard voltage 10V 10V NE43 voltage 0 10V NE43 voltage 10V 10V ext range voltage 0 10V ext range reserved reserved current 0 20mA standard current 4 20mA standard current 0 20mA N...

Page 73: ...110001 110010 110011 110100 110101 to 111110 111111 resistance 0 250 Ohm B resistance 0 400 Ohm B resistance 0 800 Ohm B resistance 0 2000 Ohm B resistance 0 4000 Ohm B reserved deactivate 6 Value rep...

Page 74: ...justified 2 to 7 reserved 1 Substitute value low byte In Modbus TCP the output of a substi tute value in case of an error is not possible page 68 2 Substitute value high byte Table 26 Module paramete...

Page 75: ...ameters A Default settings Byte Bit Parameter name Value 0 3 0 Voltage mode 0 0 10V A 1 10 10V 1 Value representation 0 Integer 15bit sign A 1 12bit left justified 2 reserved 3 Channel Kx 0 activate A...

Page 76: ...e 0 10V NE43 voltage 10V 10V ext range voltage 0 10V ext range reserved reserved current 0 20mA standard current 4 20mA standard current 0 20mA NE43 current 4 20mA NE43 current 0 20mA ext range curren...

Page 77: ...tal input DI 0 normal A 1 inverted 2 3 Function DI 00 input A 01 HW gate 10 Latch retrigger when edge positive 11 Synchronization when edge posi tive 4 Synchronization 0 single action A 1 periodical 5...

Page 78: ...ref value 13 0 1 Signal evaluation A B 00 pulse and direction A 01 rotary sensor single 10 rotary sensor double 11 rotary sensor fourfold 2 Sensor input filter A 0 2 5 s 200 kHz A 1 25 s 20 kHz 3 Sen...

Page 79: ...1 0 Digital input DI 0 normal A 1 inverted 1 Function DI 0 input A5 1 HW gate 2 to 4 Lower limit 0 to 16 777 214 x 10 3 Lower limit HWORD 0 A to 255 Unsigned8 Lower limit LWORD 0 A to 65535 5 to 7 Upp...

Page 80: ...A 1 25 s 20 kHz 3 Sensor input filter B 0 2 5 s 200 kHz A 1 25 s 20 kHz 4 Sensor input filter DI 0 2 5 s 200 kHz A 1 25 s 20 kHz 5 Sensor A 0 normal A 1 inverted 7 Direction input B 0 normal A 1 inve...

Page 81: ...input A2 input B2 input Z2 reserved diagnostic measurement mode CNT2 main count direction CNT2 4 filter Z2 filter A2 B2 reserved pull up Z2 reserved threshold input A B Z CNT2 5 mode Z2 mode CNT2 6 di...

Page 82: ...gnostic interface 1 Diagnostic messages of the function unit deacti vated in diagnostic interface Input Zx Input Bx Input Ax 0 A Signal logic remains LOW 0 HIGH 1 1 Invert signal before processing 1 4...

Page 83: ...le Latch Retrigger CNT 0011 Continuous latch retrigger CNT 0100 Single L R and HW gate CNT 0101 Continuous L R and HW gate CNT 0110 reserved 0111 Alarm input PWM 1000 HW gate PWM 1001 Retrigger PWM 10...

Page 84: ...rror is not possible page 68 1 DBPx STS MODE 00 A STS_DBPx 1 with REG_CNTx_CMP0 REG_CNTx_CNT REG_CNTx_CMP1 01 reserved 10 11 STS_DBPx Px 10to 12 ADR AUX REGx WR DATA Address of the basic write registe...

Page 85: ...1010 38400 bps 1011 57600 bps 1100 115200 bps reserved 5 4 reserved 6 DisableReducedCtrl Constant setting The diagnosis messages are set in Byte 6 of the process input data inde pendent of diagnostic...

Page 86: ...its is 8 5 4 Data flow control 00 none A the data flow control is deactivated 01 XON XOFF Software Handshake XON XOFF is activated 10 RTS CTS Hardware Handshake RTS CTS is activated 7 6 reserved 2 XON...

Page 87: ...parameterization as RS485 5 reserved 6 Disable ReducedCtrl Constant setting The diagnosis messages are set in Byte 6 of the process input data inde pendent of diagnostic Byte 6 of the process output d...

Page 88: ...mode XON character This character is used to start the data transfer of the data terminal device DTE when the software handshake is activated 3 XOFF character 0 255 19 A Only in RS422 mode XOFF chara...

Page 89: ...ion value transferred to the module bus master is as follows SSI_FRAME_LEN INVALID_BITS_MSB INVALID_ BITS_LSB The invalid bits on the LSB side are removed by shifting the position value to the right s...

Page 90: ...100000 bps 0101 83000 bps 0110 71000 bps 0111 62500 bps reserved 7 to 4 reserved 3 5 to 0 Data frame bits 00000 to 100000 Number of bits of the SSI data frame SSI_FRAME_LEN must always be greater tha...

Page 91: ...configuration stored in the XNE 1SWIRE on power up SW LED flashing the physical struc ture of the SWIRE bus must be stored in the XNE 1SWIRE 0 inactive A Manual SWIRE configuration To store the physi...

Page 92: ...RE slaves that match the SET configuration stored in the PLC The SWIRE slaves that do not match the SET configuration stored in the PLC do not perform any data exchange MC Moeller conformance from ver...

Page 93: ...er setting 0 active A Group diagnostics is activated 1 inactive Group diagnostics is not activated TYPINFO Field Configuration error Activate slave diagnostics info field TYPERRSx As soon as a slave o...

Page 94: ...failure n 10 ms Default 1s 0xFF Lifeguarding off Byte 5 6 SCDIAGSx Input bit communication error slave x Slave diagnostics message from Byte 1 Bit 7 is accepted in the feedback inter face as Bit4 0 a...

Page 95: ...system supply voltage USYS 24 V DC The system supply is converted 24 V DC 5 V 1 reserved 2 Field voltage missing Monitoring of the externally provided field supply voltage UL 24 V DC 3 reserved Table...

Page 96: ...hold of 3 mA Table 40 XN 2AI I 0 4 20MA Diagnosis byte Bit Diagnosis n channel 1 0 Measurement value range error Indication of overcurrent or undercurrent of 1 of the set current range Current 0 20 mA...

Page 97: ...easurement value range error Indication of overvoltage or undervoltage of 1 of the set voltage range Voltage 10 10 V DC Overvoltage Umax U 10 1 V DC Undervoltage Umin U 10 1 V DC Voltage 0 10 V DC Ove...

Page 98: ...reserved Table 45 XN 4AI U I Diagnosis byte Bit Diagnosis n channel n n 1 4 0 Measurement value range error Indication of overvoltage or undervoltage of 1 of the set voltage range or indication of ov...

Page 99: ...the signal cable In temeperature messurements In resistance measurements In current measurements in the range of 4 20 mA 2 Short circuit SC The measured value is in the range which is assumed that th...

Page 100: ...Table 48 XN 2DO 24VDC 0 5A N Diagnosis byte Bit Diagnosis n 0 overcurrent short circuit channel 1 1 overcurrent short circuit channel 2 Table 49 XN 2DO 24VDC 2A P Diagnosis byte Bit Diagnosis n 0 over...

Page 101: ...urrent short circuit channel 29 32 Table 53 XN 4AO U I Diagnosis byte Bit Diagnosis A The switching thresholds de pend on the set ting of the module parame ter operation mode Kx see manual MN05002011Z...

Page 102: ...nter range wrong 3 Start of counter range wrong 4 Invert DI latch retr not perm It is not permitted to invert the level of the digital input when using the latch retrigger function 5 Main count direct...

Page 103: ..._ERR X X X X P1_DIAG D1_DIAG Byte 3 HW_ERR PWM2_ PAR_ERR X X X X P2_DIAG D2_DIAG Table 55 Diagnostics of the XNE 2CNT 2PWM Diagnostic message Values Meaning CNT1_PAR_ERR CNT2_PAR_ERR PWM1_PAR_ERR PWM2...

Page 104: ...erization error 1 Hardware failure 2 Data flow control error 3 Frame error 4 Buffer overflow Table 57 XN 1RS485 422 Diagnosis byte Bit Diagnosis n 0 Parameterization error 1 Hardware failure 2 Data fl...

Page 105: ...Field Byte n 6 PKZERRS8 PKZERRS7 PKZERRS6 PKZERRS5 PKZERRS4 PKZERRS3 PKZERRS2 PKZERRS1 Byte n 7 PKZERRS16 PKZERRS15 PKZERRS14 PKZERRS13 PKZERRS12 PKZERRS11 PKZERRS10 PKZERRS9 Table 59 Meaning of diag...

Page 106: ...eral checking of a slave for any diagnostics messages present only check the first byte 0 None No diagnostics message present 1 Present One several diagnostics messages present Byte 2 SDERR Communicat...

Page 107: ...ll generate an error message as soon as the power supply goes below the level at which the function of the relays is not guaranteed 0 OK Contactor supply voltage is o k 20 VDC or diagnostics function...

Page 108: ...in data exchange with the SWIRE master but is not any longer Byte 7 8 PKZERRSx Only SWIRE DIL Overcurrent protective circuit breaker slave x Info field for the individual indication of the tripping of...

Page 109: ...the default settings in the XI ON gateways The default IP address for the XI ON gateways is 192 168 1 see also Chapter 3 1 2 IP address Page 23 If necessary please adjust the IP address of the PLC PC...

Page 110: ...al up Connections 1 Open the folder Local Area Connection and open the dialog Local Area Connection Prop erties via the button Properties in the dialog Local Area Connection Status 2 Mark Internet Pro...

Page 111: ...2008Z EN www eaton com 111 6 2 2 Changing the IP address in Windows NT 1 Open the folder Network in the Control Panel 2 Activate TCP IP connection in the tab Protocols and click the Properties button...

Page 112: ...address as well as the subnet mask according to the application The network is browsed by using the search function in the Address Tool Figure 41 Address Tool in the I O ASSISTANT Figure 42 Search fu...

Page 113: ...002008Z EN www eaton com 113 The network is browsed for connected hosts which are then listed in the Address Tool The address changing is done via Tools Changing IP settings It is now possible to chan...

Page 114: ...en changing the IP addresses via the I O ASSISTANT In this case you can deactivate the system integrated Windows XP firewall completely or adapt it to your application Deactivating the firewall Open t...

Page 115: ...ing the button Add Program opens the dialog Add a Program Select the I O ASSISTANT from the list of installed programs If necessary use the button Browse to choose the file IOassistant exe from the in...

Page 116: ...m the Modbus organization www modbus org Table 60 Example station Module Data width Proc in Proc out Alignment GW XNE GWBR 2ETH MB 0 XN 2AI I 0 4 20MA 2 words word by word 1 XN 2DI 24VDC P 2 bits bit...

Page 117: ...6 Application example Modbus TCP 6 3 Communication examples Modbus TCP XI ON XNE GWBR 2ETH MB 10 2011 MN05002008Z EN www eaton com 117 Figure 47 The software Modbus Serv er Tester...

Page 118: ...Gateway response Status register of the gateway Figure 48 Request gateway status register 0 100C Figure 49 Gateway status Table 61 Register 100Ch gateway status Byte Value Meaning Byte 1 bits 8 to 15...

Page 119: ...reference module list is stored in the register area 0 2800 to 0 2840 It can be read by using function code 03 read multiple registers Each module is clearly identified by a 4 byte ident number Bytes...

Page 120: ...xample station Ident no Module XNE GWBR 2ETH MB 225570 0 XN 2AI I 0 4 20MA 210020 1 XN 2DI 24VDC P 212002 2 XN 2DO 24VDC 0 5A P 215570 3 XN 2AI THERMO PI 410030 4 XN 4DI 24VDC P 00000000 5 empty slot...

Page 121: ...the actual module list can be read from registers 0 2A00 to 0 2A40 using function code 03 again In this case the actual module list shows a deviation from the reference module list at module position...

Page 122: ...age length of the intelligent input modules is read via function code 04 from register 1011 The process image length of the intelligent input modules is 0 90 bits 18 bytes 9 registers Figure 54 Proces...

Page 123: ...largely efficient access to the process data of a station the module data are consistently packed and mapped to a coherent register area The packed input data can be found in registers 0 0000 to 0 01...

Page 124: ...0 0000 0 00 0 00 channel 1 not used or input value at 0 mA in measurement range 0 to 20 mA register 0 0001 0 00 0 00 The module shows the lower measurement limit when the channel is not used XN 2AI TH...

Page 125: ...SI 4 registers 0 0005 to 0 0008 register 0 0006 0 00 0 02 register 0 0007 0 00 0 00 register 0 0008 0 FF 0 FF register 0 0009 0 01 0 FF In the SSI module the status and diagnosis information is shown...

Page 126: ...input data of the digital modules occupy 1 register register 0 0009 Value 0 02 0 05 XN 2DI 24VDC P 2 bits register 0 0009 byte 0 bits 0 and 1 0 01 input 0 bit 0 1 XN 4DI 24VDC P 4 bits register 0 0009...

Page 127: ...output data registers 0 0800 to 0 09FF Example Module 2 XN 2DO 24VDC 0 5A P setting the output channels 2 1 In order to determine the register to be written firstly the process image length of the in...

Page 128: ...irectly follow the packed output data of the intelligent modules 6 registers They can thus be found in the register area 0 0800 to 0 09FF starting with register 0 0806 3 In order to set the outputs 2...

Page 129: ...l 0 from 0 to 20 mA to 4 to 20 mA Deactivation of channel 1 via parameter channel Example B Module 9 Changing the baudrate from 500000 bps to 71000 bps Example A Module 0 The parameter of the module 1...

Page 130: ...ation of channel 1 via parameter channel The structure of the module s parameter data can be found in Table 67 Module parame ters XN 2AI I 0 4 20MA Page 129 Thus bit 3 in byte 1 in register 0 B000 Byt...

Page 131: ...served 1 3 to 0 Number of invalid bits LSB 0000 to 1111 Number of invalid bits on the LSB side of the position value supplied by the SSI encoder The meaningful word width of the position value transfe...

Page 132: ...Module parameters XN 1SSI A Default settings Byte Bit Parameter name Value meaning 2 3 to 0 Data rate 0000 1000000 bps 0001 500000 bps A 0010 250000 bps 0011 125000 bps 0100 100000 bps 0101 83000 bps...

Page 133: ...ins one diagnostic bit for each module in the station which shows if the respective module sends a diagnostic message or not The meaning of this diagnostic bit has to be read out from the diagnostic d...

Page 134: ...shown in register 0 A120 register 0 A120 0 0002 The diagnosis shows an open circuit at channel the SSI module because no SSI encoder is connected I Figure 65 module diagno sis module 3 A diagnosis byt...

Page 135: ...n of module diagnostics XI ON XNE GWBR 2ETH MB 10 2011 MN05002008Z EN www eaton com 135 Table 73 XN 1SSI Diagnosis byte Bit Diagnosis n 0 SSI group diagnostics 1 Wire break 2 Sensor value overflow 3 S...

Page 136: ...6 Application example Modbus TCP 6 5 Evaluation of module diagnostics 136 XI ON XNE GWBR 2ETH MB 10 2011 MN05002008Z EN www eaton com...

Page 137: ...ertain modules together Note A mixed usage of XNE ECO or XN standard gateways and XNE ECO and XN standard I O modules base modules with tension clamp terminals is possible without any problems Note Th...

Page 138: ...station should be thorough to avoid faults and increase operating reli ability The power to XI ON systems is supplied from a common external source This avoids the occurrence of potential compensatin...

Page 139: ...B 400 mA is reached a bus refreshing module has to be used in order to provide the module bus voltage To the right of the bus refreshing module the sum of the modules current consumptions can amount t...

Page 140: ...I 4AI PT NI 9 30 mA XN 2DO 24VDC 0 5A P 2 32 mA XN 2DO 24VDC 0 5A N 2 32 mA XN 2DO 24VDC 2A P 2 33 mA XN 2DO 120 230VAC 0 5A 2 35 mA XN 4DO 24VDC 0 5A P 2 30 mA XN 16DO 24VDC 0 5A P 3 120 mA XN 32DO...

Page 141: ...N 2DO R CO 1 28 mA XN 1CNT 24VDC 9 40 mA XNE 2CNT 2PWM 9 30 mA XN 1RS232 9 140 mA XN 1RS485 422 9 60 mA XN 1SSI 9 50 mA XNE 1SWIRE 9 60 mA Table 74 Communication bytes and nominal current consumptions...

Page 142: ...bus refreshing module All bus refreshing modules are connected to one another via the same ground potential The power to the module bus is supplied via the connections 11 and 21 on the base module of...

Page 143: ...base modules The C rail of the base modules for power supply modules is mechanically separated thus potentially isolating the adjoining supply groups Access to the C rail is possible with the help of...

Page 144: ...rning It is permitted to load the C rail with a maximum of 24 V Not 230 V Note For information about introducing a XI ON station into a ground reference system please read Chapter 8 Page 149 Figure 70...

Page 145: ...ons should be chosen to guarantee the potential isolation to the adjoining modules Attention When relay modules are planned and the C rail is used for a common voltage supply a further power supply mo...

Page 146: ...to disconnect the field wiring The XI ON station remains in operation if an electronics module is pulled The voltage and current supplies as well as the protective earth connections are not interrupt...

Page 147: ...g the I O ASSISTANT does not require a special position of the DIP switches The described DIP switch position can be used to force the gateway into the download mode This can be necessary if the curre...

Page 148: ...7 Guidelines for station planning 7 7 Firmware download 148 XI ON XNE GWBR 2ETH MB 10 2011 MN05002008Z EN www eaton com...

Page 149: ...uting inside and outside of cabinets To ensure EMC compatible cable routing the cables should be grouped as follows Various types of cables within the groups can be routed together in bundles or in ca...

Page 150: ...concrete cable ducts Signal cables must be protected against overvoltage by varistors or inert gas filled overvoltage arrestors Varistors and overvoltage arrestors must be installed at the point where...

Page 151: ...les is characterized by the following The system supply of gateway and I O modules as well as the field supply are realized via one power feed at the gateway All XI ON modules gateway power feeding an...

Page 152: ...inactive metal components for example switchgear cabinets switchgear cabinet doors supporting bars mounting plates tophat rails etc must be connected to one another over a large surface area and with...

Page 153: ...a large surface area and must be correctly earthed Mount the mounting rails over a large surface area and with a low impedance to the support system using screws or rivets Remove the isolating layer f...

Page 154: ...ng braid and in so doing create a large surface contact area The shield rail must have a low impedance for example fixing points of 10 to 20 cm apart and be connected to a reference potential area The...

Page 155: ...the compensation cable be less than 200 m then its cross section must be at least 16 mm2 0 025 inch2 If the cable length is greater than 200 m then a cross section of at least 25 mm2 0 039 inch2 is r...

Page 156: ...8 Guidelines for Electrical Installation 8 5 Potential compensation 156 XI ON XNE GWBR 2ETH MB 10 2011 MN05002008Z EN www eaton com...

Page 157: ...r module XN 1CNT 24VDC Process input data counter mode Process input data is data from the connected field device that is transmitted via the XN 1CNT 24VDC module to the PLC This is transferred in an...

Page 158: ...tained RES_STS 0 ERR_LOAD 1 Error with load function Control bits LOAD_DO_PARAM LOAD_CMP_VAL2 LOAD_CMP_VAL1 LOAD_PREPARE and LOAD_VAL must not be set at the same time during the transfer An incorrect...

Page 159: ...t be reset by the RES_STS control bit STS_CMP1 Status comparator 1 This status bit indicates a comparison result for comparator 1 if The output DO1 is released with CTRL_DO1 1 and a comparison is run...

Page 160: ...g ERR_24Vdc Short circuit sensor supply This diagnostics information must be acknowledged with the EXTF_ACK process output control bit ERR_DO Short open circuit excess temperature at the output DO1 ER...

Page 161: ...input B The Signal evaluation parameter A B must be set to pulse and direc tion STS_UP Direction status up The direction is determined by a signal at the physical input B The Signal evaluation parame...

Page 162: ...format Four bytes provide the parameter values for Load direct Load in preparation Reference value 1 Reference value 2 or Behavior of the digital outputs Two control bytes contain the control functio...

Page 163: ...d value direct Load value in preparation Reference value 1 or Reference value 2 Structure of the data bytes with Function and behavior of DO1 DO2 Figure 77 Structure of the data bytes with Load value...

Page 164: ...of the data bit SET_DO1 or comparison results if CTRL_DO1 1 MODE_DO1 defines which function DO1 is to accept 00 The output DO1 shows the status of the control bit SET_DO1 This must be released with CT...

Page 165: ...of SET_DO1 RES_STS 0 1 Initiate resetting of status bits Status bits STS_ND STS_UFLW STS_OFLW STS_CMP2 STS_CMP1 STS_SYN process input are reset Bit RES_STS_A 1 process input acknowledges that the res...

Page 166: ...1 Parameter definition of reference value 1 0 1 The value in bytes 0 to 3 is accepted as a reference value 1 LOAD_ PREPARE Parameter definition of Load counter in preparation 0 1 The value in bytes 0...

Page 167: ...nction of DO1 or Integration time Two control bytes contain the control functions for transferring the parameter values for starting stopping the measurement for acknowledging errors and for resetting...

Page 168: ...TF_ACK control bit is set CTRL_DO1 0 The output DO1 is blocked 1 The output DO1 is released SET_DO1 If CTRL_DO1 1 and the physical output DO1 is configured for indicating the value SET_DO1 DO1 can be...

Page 169: ...lue in bytes 0 to 3 is accepted directly as the new upper measuring limit LOAD_UPLIMT 1 to 200 000 000 x 10 3 Hz 1 to 25 000 000 x 10 3 rpm 1 to 100 000 000 ms LOAD_ LOPLIMIT Parameter setting of the...

Page 170: ...CNT2_ CMP0 PWMx 4 STS_PWM1_ LOGMSG STS_PWM1_ SFKT_EN STS_PWM1_ RUN STS_PWM1_ GENERAL_ EN MSG_ PWM1_ DO_ERR MSG_ PWM1_ SFKT MSG_ PWM1_ NDDC MSG_ PWM1_ SW_LR 5 STS_PWM2_ LOGMSG STS_PWM2_ SFKT_EN STS_PWM...

Page 171: ...up Ax Bx Zx 0 Digital input is LOW 1 Digital input is HIGH 1 3 MSG_CNTx_CMP0 0 No message active that reports that the compare value CMP0 has been reached 1 The counter CNTx reports that the compare...

Page 172: ...T_DISABLE did not occur 1 The event according to there parameterized special function CNT1_SFKT_DISABLE occured MSG_CNTx_SW_LR 0 The function Latch Retrigger has not been activated 1 The function Latc...

Page 173: ...6 Dx 0 Digital input is LOW 1 Digital input is HIGH STS_DBPx 0 Status of the information defined through DBPx STS MODE 1 STS_CONFIG _ERR 0 The present configuration is OK 1 In REG_CONFIG_ERR an error...

Page 174: ...terface was successful 7 REG_RD_ADR 0 127 Address of the input register of which the content is shown in the user data REG_RD_DATA in the check back interface if REG_RD_ABORT 0 User data 8 11 REG_RD_D...

Page 175: ...served PWM1_ SINGLE PWM1_ SW_LR PWM1_ SFKT_ DISABLE reserved PWM1_ LOGMSG PWM1_ ENABLE PWM1_ GENERAL_ DISABLE 3 reserved PWM2_ SINGLE PWM2_ SW_LR PWM2_ SFKT_ DISABLE reserved PWM2_ LOGMSG PWM2_ ENABLE...

Page 176: ...stored to register REG_PWMx_LOGMSG Before switching to REG_CNTx_LOGMSG this register is set to 0 With a change from 1 0 all data from REG_CNTx_LOGMSG are copied to the MSG bits in the Process input c...

Page 177: ...on of input Zx depending on the parameterization 1 Disable the special function of input Zx depending on the parameterization PWMx_SW_LR 0 Not activated 1 A latch retrigger has to be executed at count...

Page 178: ...27 Address of the register which has to be read The user data can be found in REG_RD_DATA in the Process input check back interface if RD_ABORT 0 User data 8 11 REG_WR_DATA Byte 0 REG_WR_DATA Byte 3 0...

Page 179: ...ce that is transmitted via the XN 1RS module to the PLC The incoming data are stored in the receive buffer of the XN 1RS module segmented and transferred to the PLC via the module bus and the gateway...

Page 180: ...DTE is disturbed A diagnosis message is generated if the parameter Diagnostics is set to 0 release The diagnostic data show the cause of the communication disturbance The user has to set back this bi...

Page 181: ...way and the XN 1RS module to a connected field device The data received from the PLC are loaded into the 64 byte transmit buffer in the XN 1RS module The transmission is realized in a 8 byte format wh...

Page 182: ...S 1 The command RXBUF FLUSH 1 is ignored If STATRES 0 RXBUF FLUSH 1 causes the flushing of the receive buffer TXBUF FLUSH 0 1 This bit is used to flush the transmit buffer If STATRES 1 The command TXB...

Page 183: ...ion was successful 1 byte can be used to transfer status messages of the SSI encoder This byte also contains an acknowledgement that the write operation to the register was successful and indication o...

Page 184: ...with the address stated at REG_WR_ADR in the process output data could not be executed 1 The writing of user process output data to the register with the address stated at REG_WR_ADR in the process o...

Page 185: ..._SSI_POS REG_CMP2 This marker must be reset with CLR_CMP2 1 in the process output data STS_CMP2 0 A comparison of the register contents has produced the following result REG_SSI_POS REG_CMP2 1 A compa...

Page 186: ...not possible with the present parameter set STS_UFLW 0 A comparison of the register contents has produced the following result REG_SSI_POS REG_LOWER_LIMIT 1 A comparison of the register contents has p...

Page 187: ...ferred in an 8 byte format as follows 1 byte contains a Stop bit for interrupting communication with the encoder 1 byte is used for controlling the comparison operations 1 byte contains the register a...

Page 188: ...DATA REG_WR_ADR 0 63 Address of the register to be written with REG_WR_DATA CLR_CMP2 0 Default status i e no reset of FLAG_CMP2 active 1 Reset of FLAG_CMP2 active EN_CMP2 0 Default status i e the data...

Page 189: ...3 Bit 2 Bit 1 Bit 0 n 1 Data from modules to the left n SWIRE Slave 2 SWIRE Slave 1 SC2 PKZST2 SI2 SC1 PKZST1 SI1 n 1 SWIRE Slave 4 SWIRE Slave 3 SC4 PKZST4 SI4 SC3 PKZST3 SI3 n 2 SWIRE Slave 6 SWIRE...

Page 190: ...o account the time delay between the setting of an output a mechanical execution and the subsequent feedback signal 0 Off Contactor coil is switched off 1 On Contactor coil is switched on PKZSTx Switc...

Page 191: ...ve 5 SO6 SO5 n 3 SWIRE Slave 8 SWIRE Slave 7 SO8 SO7 n 4 SWIRE Slave 10 SWIRE Slave 9 SO10 SO9 n 5 SWIRE Slave 12 SWIRE Slave 11 SO12 SO11 n 6 SWIRE Slave 14 SWIRE Slave 13 SO14 SO13 n 7 SWIRE Slave 1...

Page 192: ...I 24VDC N 0 420030 XN 16DI 24VDC P 0 810050 XN 32DI 24VDC P 0 A10070 XNE 8DI 24VDC P 0 610040 XNE 16DI 24VDC P 0 820050 Analog input modules XN 1AI I 0 4 20MA 0 012350 XN 2AI I 0 4 20MA 0 225570 XN 1A...

Page 193: ...07 XN 2AO U 10 0 10VDC 0 210807 XNE 4AO U I 0x417A09xx Relay modules XN 2DO R NC 0 230002 XN 2DO R NO 0 220002 XN 2DO R CO 0 210002 Technology modules XN 1CNT 24VDC 0 014B99 XNE 2CNT 2PWM 0 017BCC XN...

Page 194: ...logic controllers PLC are a special group of automation devices Baud Baud is a measuring unit for the transmission speed of data 1 Baud corresponds to the transmission of one step per second If one b...

Page 195: ...le specific bits and bytes CPU Central Processing Unit Central unit for electronic data processing the processing core of the PC DHCP Client Server protocol which reduces the effort of assigning IP ad...

Page 196: ...ithin this fluctuating range then the relevant output would be turned on and off in rhythm with the fluctuating signal I O Input output Impedance Total effective resistance that a component or circuit...

Page 197: ...ler Potential compensation The alignment of electrical levels of electrical components and external conductive components by means of an electrical connection Potential free Galvanic isolation of the...

Page 198: ...hort circuit proof part withstands thermal and dynamic loads which can occur at its place of installation due to a short circuit Station A functional unit or I O components consisting of a number of e...

Page 199: ...29 technical data 28 gateway status 118 group diagnosis 133 I ident number 120 inductive loads protective circuit 155 IP Internet Protocol 24 IP address 23 PC 110 J jumper 21 L labels 21 M markers 21...

Page 200: ...IRE 191 XNE 2CNT 2PWM 175 product overview 13 R reference module list 119 S service interface 34 shield connection analog modules 22 gateway 22 shielding 154 station planning 137 T TCP Transmission Co...