hilscher NIOT-E-TIB100-GB-RE, User Manual

Page 1: ...User manual netIOT Edge Gateway NIOT E TIB100 GB RE Remote V1 1 2 Hilscher Gesellschaft für Systemautomation mbH www hilscher com DOC170501UM04EN Revision 4 English 2018 08 Released Public ...

Page 2: ...e interface 17 5 5 LEDs of the EtherNet IP Adapter interface 18 6 Commissioning the Edge Gateway 20 6 1 Establishing the IP address communication 20 6 2 Using the web browser to establish a connection with the Edge Gateway 22 6 2 1 Using the host name 22 6 2 2 Access to the Edge Gateway in the Windows network environment 23 6 2 3 Using the IP address 23 7 Edge Gateway Manager 24 7 1 Calling the Ed...

Page 3: ...8 8 10 2 Logout 79 9 Node RED The wiring editor 80 9 1 Modelling IoT flows with nodes 81 9 2 Opening Node RED 82 9 3 Graphical user interface 84 9 4 Working with Node RED 86 9 4 1 Using Git hub repository to store flows projects 88 9 4 2 Menu Deploy 89 9 4 3 Dashboard 91 9 5 List of nodes 101 9 6 MQTT input node 104 9 7 MQTT output node 109 9 8 OPC UA input node 111 9 9 OPC UA output node 117 10 E...

Page 4: ...ting the configuration 192 13 2 4 Help Contents 192 13 2 5 Help Information 192 13 3 Configuration tree 193 13 3 1 EtherNet IP configuration 193 13 3 2 IO and signal configuration 194 13 3 3 Signal definitions overview 203 13 3 4 Download of the EDS file 204 13 3 5 Help 204 14 Edge Server 205 14 1 Function principle 205 14 1 1 Communication with IT network and mobile devices 205 14 1 2 Communicati...

Page 5: ...ficates CAs that are no longer considered as trustworthy 235 16 4 5 Adding a new trustworthy certificate to the trusted certification authority store of the Edge Gateway 235 16 5 Working with server certificates for inbound connections 236 16 5 1 Working with certificates for HTTP and OPC UA Server 236 16 5 2 Working with key files for HTTP and OPC UA Server 239 16 6 Working with client authentica...

Page 6: ...lows are deleted Section Using Git hub repository to store flows projects page 88 added Section Isolated application execution with Docker page 217 added 3 2018 06 11 HHe RGö Section OPC UA Server for Edge page 69 added 4 2018 08 13 RGö HHe Section Displaying the system log files page 40 added Section Security page 75 added Section Public Key Infrastructure page 224 added Table 1 List of revisions...

Page 7: ...omation and IT network a secure operating system the execution of signed firmware and packets as well as encryption techniques of the latest standards secure the data integrity and offer protection against data theft The gateway base function forms the web based Thing Wiring editor Node RED which serves to model the flows in the devices Data apps and data profiles are created within minutes with p...

Page 8: ...nterfaces Fieldbus SYS 1 9 APL SEC POW GPO1 WWAN WLAN BAT COM 1 2 4 5 3 6 8 7 10 11 2 Figure 2 Positions of the interfaces of NIOT E TIB100 GB RE Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 9: ...tor RJ45 jacket channel 1 6 LED communication state of Real Time Ethernet Name und function depends on used RTE protocol PROFINET IO Device BF Bus failure EtherNet IP Adapter NS network status LEDs of the PROFINET IO Device interface page 17 LEDs of the EtherNet IP Adapter interface page 18 7 USB connector 1x USB 3 0 USB connectors page 12 8 USB connector 1x USB 2 0 USB connectors page 12 9 LAN co...

Page 10: ...ions Fieldbus SYS APL SEC POW GPO1 WWAN WLAN BAT COM 1 2 120 mm 63 mm 106 mm 106 mm 106 mm 100 mm Figure 3 Dimensions Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 11: ...ive fieldbus system is included within the delivery of the Edge Gateway Stick the sticker of the fieldbus system to be used to the I O shield of the fieldbus interface of the Edge Gateway Figure 4 LED label 4 3 Power supply DC 24V Pin Signal Description 24 V DC 24 V DC GND Ground Reference potential FE Functional earth Table 3 Power supply connector Edge Gateway NIOT E TIB100 GB RE Remote DOC17050...

Page 12: ...d 5 see section Positions of the interfaces page 8 For data exchange at the fieldbus use the fieldbus input and output in node Node RED Sections Example 6 Fieldbus input node page 142 and Example 7 Fieldbus output node page 150 describe how to access the cyclic I O data of the fieldbus in Node RED 4 6 USB connectors The Edge Gateway has 2 USB connectors 1 positions 7 and 8 see section Positions of...

Page 13: ...5 Onboard Serial Port Mode RS232 RS485 do not use this setting RS485 Auto use this setting for RS 485 only because RTS control is active Table 4 Parameters of the serial interface 4 7 1 RS 232 RS 232 Pin Signal Description 1 DCD Data Carrier Detect 2 RXD Receive signal 3 TXD Send signal 4 DTR Data Terminal Ready 5 ISO_GND Ground reference potential 6 DSR Data Set Ready 7 RTS Request to Send 8 CTS ...

Page 14: ...ect to other Wi Fi devices in order to configure the Edge Gateway from a mobile device for example Operating mode Client allows the Edge Gateway to be connected to any Wi Fi Access Point Section Configuring wireless communication WiFi page 60 describes how you activate the antennas and how to set the Wi Fi operating mode Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 20...

Page 15: ...the gateway Fieldbus SYS 1 9 APL SEC POW GPO1 WWAN WLAN BAT COM 1 2 3 2 7 4 5 6 10 11 12 Figure 5 NIOT E TIB100 GB RE LED positions Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 16: ...te Table 7 Description of gateway status LEDs 5 3 LEDs of the LAN interface LEDs indicating state of the LAN communication For the positions of the LAN LEDs see section Positions of the LEDs on the gateway page 15 LED Color State Meaning LINK See positions 2 and 4 Duo LED green orange green On 1 GBit network connection orange On 100 MBit network connection off Off 10 MBit or no network connection ...

Page 17: ...pendent The device sends receives Ethernet frames off Off The device does not send receive Ethernet frames Table 9 LED states for the PROFINET IO Device protocol LED state Definition Flashing 1 Hz 3 s The indicator turns on and off for 3 seconds with a frequency of 1 Hz on for 500 ms followed by off for 500 ms Flashing 2 Hz The indicator turns on and off with a frequency of 2 Hz on for 250 ms foll...

Page 18: ...ion in the device drawing 7 Duo LED red green green On Connected An IP address is configured at least one CIP connection any transport class is established and an Exclusive Owner connection has not timed out green Flashing 1 Hz No connections An IP address is configured but no CIP connections are established and an Exclusive Owner connection has not timed out green red off Flashing green red off S...

Page 19: ...green on for 250 ms then red on for 250 ms then off until the test is completed Flickering load dependant The indicator turns on and off with a frequency of approximately 10 Hz to indicate high Ethernet activity on for approximately 50 ms followed by off for 50 ms The indicator turns on and off in irregular intervals to indicate low Ethernet activity Table 12 LED state definitions for the EtherNet...

Page 20: ...see position 7 in section Positions of the interfaces page 8 with a network in which a DHCP server is available ð The Edge Gateway obtains an IP address from the DHCP server Access to the Edge Gateway is possible now Note The Edge Gateway sends a request to a DHCP server once after switching on the device or after each connection of the Ethernet cable i e when the Edge Gateway detects a link signa...

Page 21: ... eth1 directly with your PC or notebook Ø Open the Control panel Ø Click on Network and Sharing Center Ø Click on Change adapter settings Ø Double click the name of the network connection Local Area Connection The name of the network connection may be different on your PC Ø Click on Properties Ø Double click on Internet Protocol Version 4 TCP IPv4 Ø Set the following IP address e g 192 168 253 2 a...

Page 22: ...he device Where do you find the host name on the device The device is delivered factory setting with a label printed at its bottom In the figure below the host name has a red frame Figure 7 Device label Hostname Establishing a connection with the host name Ø Enter the following address in the address line of your browser https hostname Example For the device with the host name NTB827EB1D9D94 enter...

Page 23: ...er opens You can now use the Edge Gateway manager to configure the device For this purpose read section Edge Gateway Manager web page page 25 6 2 3 Using the IP address If you know the IP address of one of the LAN connections of the Edge Gateway and if you are physically connected to your operating device you can use your web browser to establish a connection with the Edge Gateway by entering this...

Page 24: ...es stored in the Edge Gateway Ø To open the Edge Gateway manager enter the following information in the address line of your browser https Host name of the Edge Gateway or https IP address of the Edge Gateway ð Your browser displays the Edge Gateway manager Figure 9 Edge Gateway Manager Note Remember that the secured HTTPS protocol is used here not the widely spread HTTP protocol Edge Gateway NIOT...

Page 25: ...n on the system Opens the wiring editor Node RED Section Node RED The wiring editor page 80 describes how to create applications for the Edge Gateway Opens the Node RED Dashboard graphical user interface Opens the Edge Server Control Center See section Edge Server page 205 Opens the Docker management See section Isolated application execution with Docker page 217 Opens the Edge Gateway documentati...

Page 26: ... the Hilscher homepage in the Internet Requires a connection to the Internet Opens legal information concerning the Edge Gateway Requires a connection to the Internet Table 13 Starting applications with the Edge Gateway Manager Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 27: ...splay device specific information Ø Click the tile Control Panel Ø The login screen for the Control Panel is displayed Ø Enter your user name and your password Ø Click at Login ð The Control Panel will be displayed Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 28: ... the preset password under Current Password With the first commissioning the password is admin Ø Enter the new administrator password It must have at least 7 characters For reasons of safety Hilscher recommends using significantly more characters A strong password consists of upper and lower case letters digits and special characters A quality indicator in the dialog box evaluates the password Wea...

Page 29: ...list of known authorized issuers of certificates Each time the certificate of the server arrives at the browser the browser compares the issuer of the certificate with the issuers stored in the list of known authorized issuers of certificates If the issuer of the certificate is not listed the browser will signal a certificate error and request the user s confirmation to continue because it assumes...

Page 30: ...with Firefox If you use Firefox as a browser a self signed certificate will cause the following error message Figure 12 Security error message of the Firefox browser 1 To avoid this message caused by a self signed certificate proceed as follows Ø To display the complete message click Advanced Figure 13 Security error message of the Firefox browser 2 Ø To define an exceptional rule that enables the...

Page 31: ...ntly check the box Permanently store this exception Ø To save the rule click Confirm Security Exception ð When you open the control panel in future security messages will no longer be displayed Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 32: ...of Google Chrome 1 Proceed as follows in order to avoid the following message which is caused by a self signed certificate Ø Click at ADVANCED to display the complete message Figure 16 Security error message of Google Chrome 2 Ø In order to continue click at Proceed to unsafe ð The Control Panel is displayed Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Release...

Page 33: ...aging packets page 56 Network LAN Configuring the Ethernet interfaces to the IT network and OT network fieldbus Configuring Ethernet communication LAN page 57 Network WiFi Configuring the WiFi communication Configuring wireless communication WiFi page 60 Network Field Configuring the operating mode of the fieldbus interface Real Time Ethernet Field page 66 Network Hostname Displaying and configuri...

Page 34: ...rtant controls and displays of the page are grayed out respectively inactive The error message Permission denied is displayed when accessing the page If there is read but no write access right present this has the following implications The error message Permission denied is displayed when trying to make a change Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Re...

Page 35: ...me Model designation of the Edge Gateway NIOT E TIB100 GB RE Firmware version Complete version designation of the firmware stored in the Edge Gateway System time Synchronization status of the internal clock of the Edge Gateway When the clock is synchronized via the network the IP address and the name of the time server used for synchronization will be displayed The user has to configure the time z...

Page 36: ...with System License Manager The functionality of an Edge Gateway can be extended The use of particular functions requires a license On this page you can see which licenses are present in the device and you can transfer a license file into the device 8 3 2 1 Which licenses are present in the device In order to display the licenses contained in the Edge Gateway use the License Manager You can open i...

Page 37: ...ithin column Details Ê The Details window opens Figure 20 License information in window Details For each license it displays the license type Column Type a brief description Column Description and the expiration date Column Expires Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 38: ...The LAN MAC address of your device to be taken from the device label 4 The e mail address to which the license download link shall be sent to Specify the following as the subject of your e mail Request for a netIOT Licence Ø Send the e mail to Hilscher vertrieb hilscher com Ø Hilscher creates an individual license file for your Edge Gateway according to the information supplied by you Ø Hilscher s...

Page 39: ... LIC Ø Click on OK Ê The license file is transferred into the Edge Gateway If the transfer is successful the following message is displayed Figure 21 Message after the transfer of the license file into the Edge Gateway Ê To activate the license a restart of the Edge Gateways is necessary Ø Click on OK Ê The license is installed now but becomes active after the next restart of the Edge Gateways Ø F...

Page 40: ...ng to a configurable set of rules So for system supervision and safeguarding correct reaction on error situations the file logging daemon syslogd or an improved successor of it runs on every Linux system On the Edge Gateways from Hilscher the widely spread logging daemon Syslog ng is used which had been developped by BalaBit IT Security Ltd now One Identity https syslog ng org Openíng the system l...

Page 41: ...y angled brackets like 45 for instance The priority can be calculated from two numeric values the facility signifying the origin of the message located within the upper 5 Bits the severity signifying the urgence and importance of the message located within the lower 3 Bits The following formula accomplishes this Priority 8 Facility Severity The facility is coded according to the following table Co...

Page 42: ...essage The length of HOSTNAME is limited to 255 characters APPLICATION This part of the message line contains the name of the device or application originally generating the message The length of APPLICATION is limited to 48 characters PID This part of the message line contains the name of the process or the process ID of the syslog application originally sending the message This may not necessari...

Page 43: ...06T13 59 41 00 00 ISOTIMESTAMP localhost HOSTNAME syslog ng APPLICATION 1524 PID Process name or process D ofsyslog application sending the message MESSAGEID meta sequenceId 1 STRUCTURED DATA Meta information syslog ng starting up version 3 8 1 MSG Real message text Table 20 Assignment of parts of message line 8 3 3 2 Log rotation Usually the Edge Gateway is configured for a daily change of the lo...

Page 44: ...ction Method Standard presetting manually Manual selection by entering date and time yes automatically NTP synchronized by means of a time server no Table 21 Setting the system time Figure 23 Time configuration page Note When you change a system time setting always reboot the Edge Gateway afterwards so that all software components in the Edge Gateway take the changed time System Reboot Edge Gatewa...

Page 45: ...hronized Ø Click Add NTP server Ê The dialog box for entering the NTP server is displayed Ø In the input field NTP server enter the address of a server which uses the NTP to synchronize the time E g To add the server for time synchronization of the Physikalisch Technische Bundesanstalt the National Metrology Institute of Germany to the list enter the address ptbtime1 ptb de in the input field NTP ...

Page 46: ...ault value is Universal For Central European Time set CET Note Once the system time has been set system services and Node RED flows which use the system time for synchronization loose their reference time i e they refer to the new time set When you change a system time setting always reboot the Edge Gateway afterwards so that all software components in the Edge Gateway take the changed time Edge G...

Page 47: ...the backup depends on the quantity of data A running backup cannot be interrupted The backup can deteriorate the performance of the Edge Gateway Save the backup on an external data carrier because any existing backup will be overwritten irrevocably without prior notice In order to create a backup of your system proceed as follows Ø Select System Backup and Restore in the control panel Ê The follow...

Page 48: ...h as time expense increased system load and missing possibility of abortion Ø In order to start the backup process click at Yes Ê The following screen indicates the start of the backup process by the text Backup in progress Figure 26 Backup in progress ð If the backup process has successfully been finished the formerly grayed out buttonDownload local backup is activated and the backup file is offe...

Page 49: ...opped that a new start of the system is initiated that this process can last for a significant amount of time and cannot be interrupted that you must not interrupt power supply of the Edge Gateway in any case In order to restore your system from a previous internal backup proceed as follows Ø Select System Backup and Restore within the Control Panel Ê The following screen appears Figure 27 Backup ...

Page 50: ...ollowing security query is displayed Figure 29 Security query prior to system recovery from internal backup file Ê You are informed about the above mentioned consequences of system recovery Ø If you want to proceed taking into account these consequences then click at Yes Ø The system on your device is restored from the system files stored within the internal backup In any way do not interrupt the ...

Page 51: ...m stored in the backup file that a new start of the system is initiated that this process can last for a significant amount of time and cannot be interrupted that you must not interrupt power supply of the Edge Gateway in any case In order to restore your system from a previous external backup i e download of an internal backup proceed as follows Ø Select System Backup and Restore within the Contr...

Page 52: ...e 32 Message prior to starting recovery from external backup Ê You are informed about the above mentioned consequences of system recovery Ø If you want to proceed taking into account these consequences then click at Yes ð The selected file is checked for correctness If the file is no image file does not contain a backup or is defective in any other way an error message is displayed Otherwise your ...

Page 53: ...safety query indicates the danger of possible data loss at deleting the backup if it has not externally been saved via the download function Figure 34 Safety query before deletion of local backup Ø If you are still sure that you really intend to delete the local backup click at Yes ð The local backup is internally deleted Right of Local backup the text No backup is displayed now instead the name o...

Page 54: ...rier 8 3 6 Rebooting the system You have to login as Administrator to use this function In order to reboot the system Ø Within the Control Panel select menu entry System Reboot Ê The following safety query is displayed Figure 36 Reboot safety query Ø If you really intend to reboot the system answer to the safety query with ð The Linux operating system of your Edge Gateway is shut down and then imm...

Page 55: ...ty query is displayed Figure 37 Warning for consequences of shutdown Ø If you really intend to shut down the system answer to the safety query with ð The Linux operating system of your Edge Gateway is shut down Note Take care of the consequences for your network if you shut down the Edge Gateway Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hils...

Page 56: ... the Linux based operating system of the Edge Gateway This page lists the installed packages including version adds new signed packages or updates already installed signed packages Note You can only install packages signed by Hilscher Use the package management only when Hilscher requests you to use the package management Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2...

Page 57: ...u can activate this interface For each Ethernet interface you can configure how to set the IP address The Edge Gateway is to obtain the IP address parameters automatically from a DHCP server Option DHCP The IP address parameters are manually entered by the user Option Fixed address The IP address parameters include the IP address the subnet mask the Gateway address and the IP addresses of the 1st ...

Page 58: ...ress IP address parameters entered by the user If you enter the IP address manually also always enter the subnet mask and the Gateway address Domain Name System If you enter the IP address parameters manually enter the IP address of the 1st and 2nd domain name server Table 22 Table LAN Meaning of the columns If you want to save your changes permanent click on Save changes Edge Gateway NIOT E TIB10...

Page 59: ... Service page is displayed Ø If the Node RED service is in the state Stop yellow then mark the service Node RED Ø Set the Autostart to enabled that the Node RED service is started with the next start of the device also Ø Click on Apply Ø Click at Operating status on Start Ê The Node RED service has been started and is displayed green 3 Display Ethernet interface cifx0 Ø Open the LAN page with Netw...

Page 60: ...f the Edge Gateway WiFi WLAN according to IEEE 802 11 The WiFi is deactivated when delivered factory setting Figure 40 WiFi default setting You can use WiFi only with device variant NIOT E TIB100 GB RE WF This page is empty when you use device variant NIOT E TIB100 GB RE and the message WiFi interface not found is displayed when opening this page Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM...

Page 61: ...the Edge Gateway into an already existing WLAN Wireless Area Network Table 23 WiFi modes of operation WiFi Description Operating mode displays the active operating mode Name displays the name of the WiFi interface wlan0 MAC address displays the MAC address if WiFi is activated Table 24 WiFi Changing the operating mode You can change the operating mode via the Mode list Ø Specify the parameters for...

Page 62: ... Channel you can select the radio channel and thus determine the WLAN radio frequency in the 2 4 GHz band Country In the list Country you can select the country in which you operate the radio network SSID Specify Service Set Identifier of wireless network Here you enter the SSID to be used in the wireless network WLAN of the Edge Gateway Note Do not use the default SSID To be able to use a WLAN co...

Page 63: ...s range for the DHCP server if you have checked the box DHCP server End IP address Here you have to enter the end IP address of the IP address range for the DHCP server if you have checked the box DHCP server Table 25 Parameters of the operating mode Access point Operating mode Client Figure 43 WiFi operating mode Client Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 20...

Page 64: ...2 to enter the IP address of the 1st and 2nd DNS server manually for the client Channel Display of the used wireless channel SSID Shows the SSID Service Set Identifier of the Access Point the Edge Gateway is connected to Table 26 Parameters of the operating mode Client Table Client For each found client the following data is shown in a separate column of the table SSID Service Set Identifier MAC A...

Page 65: ...sage WiFi successfully disconnected is displayed Saving the WiFi settings To save the WiFi settings you need the access right Write for the WiFi page Ø Click Save changes ð A security request box appears Ø Click at OK ð The WiFi settings are saved Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 66: ...us interface The receives data can be processed in Node RED or a Docker application Table Operating modes in the passive operating mode page 66 describes further operating modes Inactive The interface is deactivated Table 27 Operating mode fieldbus interface The passive operating mode offers you further operating modes The user manual Passive operating mode describes capabilities of the Edge Gatew...

Page 67: ...access the Edge Gateway from your PC even without knowing the IP address of the Edge Gateway also see Using the web browser to establish a connection with the Edge Gateway page 22 If the Edge Gateway does not obtain an IP address from a DHCP server the system cannot translate the host name and you cannot access the device Figure 44 Hostname Input field Hostname In order to specify the hostname ent...

Page 68: ...n The service is being executed yellow The service is configured but not executed red The service is neither configured nor executed grey Right for accessing this service is missing Table 29 Operating statuses of the services 8 6 1 1 Node RED service Deleting the current Node RED flows In case the processing of a flow in the Edge Gateway takes a very long time e g due to an endless loop you can de...

Page 69: ...2 OPC UA Server for Edge Figure 46 OPC UA Server for Edge settings within the Control Panel page Network Field Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 70: ...fieldbus specified in milliseconds 200 Default 200 ms Security settings Security modes At least one of these options must be checked If multiple options are checked the OPC UA Client may select a suitable of these options None Unsigned communication without encryption Checked not checked Sign Signed communication without encryption Checked not checked Sign Encrypt Signed communication with encrypt...

Page 71: ...onymous access 2 Access via username and password 3 Access via username password certificate and private key In order to allow anonymous access to the OPC UA Server check checkbox Allow anonymous access This mode does not provide any security and an OPC UA Client can connect via anonymous login Otherwise an OPC UA Client can access the den Edge Server via username and password Storing the settings...

Page 72: ...er Management Roles On this page you can determine roles and assign access rights onto resources to these roles The roles Administrator and View are standard and cannot be deleted Figure 47 Page for configuring roles An access right is set per resource Each configuration page of the control panel which contains settable device parameters is a resource Access via REST API see Functions of the Edge ...

Page 73: ...e page 67 Access onto Field network Ethernet network Network Field Services Configure service S The displayed names depend on the installed services Services Service S Starting stopping and configuring services page 68 Security Install security certificates Security SSL TLS Certicate Uploading and installing own security certificates Edge Server Access via REST API Edge Server REST API Functions o...

Page 74: ...es and access rights for this role will be displayed Ø Assign the access right per resource Ø Click at 8 7 2 Managing user accounts Open this page with User Management Accounts On this page you can add process delete user accounts Figure 48 User account page Each user account has a user name a password and an assigned role Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English ...

Page 75: ... display information related to certificates and the associated keys you require access rights for reading on Public Key Infrastructure To add certificates and keys you require access rights for writing on Public Key Infrastructure Figure 49 Public Key Infrastructure for managing of certificates The GUI of the public key infrastructure consists of these areas 1 Selection list for the certificate t...

Page 76: ...ining information about a certificate or a key In case of selection of a certificate important information about the selected certificate is displayed in the area Certificate Viewer right side Depending on the selected certificate type 1 the file selection area for certificate and key files either displays a list structure or a tree structure On selection of Trusted Certification Authorities the l...

Page 77: ...h as information on the issuer serial number country locality organisation and oganisation unit are displayed see section Structure of a certificate according to X 509 page 226 Note For more information on the foundations of asymmetric encryption techniques and public key infrastructure see sections Asymmetric encryption page 224 and Certificates and keys page 226 Edge Gateway NIOT E TIB100 GB RE ...

Page 78: ... 8 10 Session 8 10 1 User profile Open this page with Session User Profile No access rights are required in order to open this page Figure 53 User profile page On this page you can display the access rights of your user account change your E mail address and change your password Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 79: ...password Ø Specify your password at the input field New Password Ø In order to confirm your input specify your password again at the input field Confirm Password Ø Click on ð The changed password is saved 8 10 2 Logout To log out from the Edge Gateway use Session Logout No access rights are required to select this menu entry Prior to accessing the Edge Gateway again a new login Specifying user nam...

Page 80: ...th drag and drop Node RED is based on node js a platform independent runtime environment to develop Web applications with server side java scripting This manual explains you how to use Node RED for configuration and wiring of nodes within the netIOT Edge Gateway This manual refers to the following versions Node RED version 0 18 node js minimal V4 x Note You can find information about Node RED in t...

Page 81: ...ties apply to one Node RED node A node fulfills a specific defined task A node has entry masks for setting the parameters A node can have inputs and outputs A node can be connected with other nodes via its inputs and outputs A node can modify and overwrite data before passing the data on A node transports data via the msg object in the JSON format The msg object always contains the objects topic a...

Page 82: ...pening Node RED This section describes how to call Node RED for configuring the flow within the netIOT Edge Gateway Prerequisite To login you have to know your user name and password To open Node RED proceed as follows Ø Open the Edge Gateway manager see Calling the Edge Gateway Manager page 24 Ø In the Edge Gateway manager click on the tile Node RED Ê The Node RED start screen will be displayed E...

Page 83: ... Figure 57 Node RED workspace Note Remember that the secured HTTPS protocol is used here not the widely spread HTTP protocol If the Node RED workspace does not open read the following sections in compliance with the browser used Connection without certificate with Microsoft Internet Explorer page 30 Connection without certificate with Firefox page 30 Connection without certificate with Google Chro...

Page 84: ...figuration nodes If necessary the display has to be activated first Node RED menu View Configuration nodes 7 Debug output If necessary the display has to be activated first Node RED menu View Debug messages 8 Information output If necessary the display has to be activated first Node RED menu View Information 9 Sidebar The sidebar can be switched on or off 10 Zoom 11 Workspace which contains one or...

Page 85: ...e editable 3 The red triangle shows that a required parameter is not configured yet 4 The blue circle shows that this node has been changed but not transmitted yet 5 Output port if available 6 Node status if available 7 Input port if available Table 34 Node elements Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 86: ...e from the library 2 Configuring node parameters A node may require parameters that you can configure in an edit dialog The fieldbus node is an example for a node which is configured via an edit dialog 3 Connecting nodes to determine the flow In Node RED the data flow is realized as flow 4 Using Deploy to activate the flow in the Edge Gateway The flow in the workspace still has to be activated in ...

Page 87: ...output port of the node in the example called Hello World node to the input port of the other node ð Thus the two nodes are connected by a line wire in the workspace but they are not yet activated in the Edge Gateway 4 Using Deploy to activate the flow in the Edge Gateway Ø Click on Deploy ð The flow will be deployed from the workspace to the Edge Gateway and activated Edge Gateway NIOT E TIB100 G...

Page 88: ...ct you have to specify or to know the following names User name for Git Email address Project name Description for the project optional Flow file name The key if encryption is used Starting from the Node RED menu use Projects New to create a new project in Git and use Projects Open to open an existing project in Git To open the project settings use Projects Project Settings to display or change th...

Page 89: ...lows which contain modified nodes Modified Nodes deploys only nodes that have been modified Table 35 Commands of menu Deploy Procedure Ø Click on the white arrow located at the right edge of the red button Deploy Ê The menu Deploy opens Ø Click on the menu command to be executed Ê The dialog box Confirm Deploy is displayed Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English ...

Page 90: ...ally want to execute the deploy procedure Ø Click on Cancel to correct any possible errors ð The flow has not been deployed to the Edge Gateway or Ø Click on Confirm deploy to deploy the flow to the Edge Gateway and activate it ð Thus the flow is activated in the Edge Gateway Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 91: ...le text field on the user interface gauge Adds a round gauge display to the user interface chart Adds a chart to the user interface can be configured as line chart bar chart or pie chart notification Displays the contents of a message msg payload as popup notification or as dialog box Options Ok Cancel on the user interface audio out Adds audio output or speech output of text ui control Allows to ...

Page 92: ... displaying messages Layout 4 List field Menu links See section Working with menu links page 99 Layout 5 Selection list Style allows the selection of colors for background display light or dark background or user defined color display Theme 6 Input field Custom Profile allows to put in a name for a theme is only displayed if option Custom has been chosen in selection list Style Theme 7 Color selec...

Page 93: ...onfiguration 9 4 3 2 Display dashboard You can visualize the dashboard currently configured in the active Node RED flow and test it as f9ollows Ø Click at the button right of the input field Title ð In the browser a new register card is opened in which the dashboard is displayed graphically 9 4 3 3 Change title You can change the title of a dashboard as follows Ø Specify the title of the dashboard...

Page 94: ...in the tree structure Ê The icons and get visible Ø Click at the icon right of the name of the according tab ð The dialog Edit dashboard tab node is opened Figure 61 Dialog Edit dashboard tab node Ø Specify the desired name of the tab in field Name Ø If desired specify the icon type within the field Icon for instance Dashboard Ø In order to store click at in dialog Edit dashboard tab node ð The di...

Page 95: ... removed from the tree structure 9 4 3 6 Working with groups In this section working with groups is described such as creating new groups and changing and deleting groups Adding a group to a tab So you can add a group to the dashboard within a tab Ø Click at the icon right of the name of the according tab ð A new group is added below the already present groups If there is not any group the new gro...

Page 96: ...p with a tab to be newly created select entry Add new ui_tab at the end of the selection list Then a new tab is created and the current group is related to this new tab Ø Specify the width of the group in field Width Ø You can control via the checkbox Display Group Name whether the name of the group as displayed in the field Name is displayed on the dashboard or not Ø In order to store click at in...

Page 97: ...g a widget to group So you can add a widget of your choice to a group Ø Select a node for a widget from the node group dashboard out of the node library for instance for a line chart bar chart or pie chart the node for the widget Chart Ø Pull this node onto your worksheet using Drag Drop Ø Double click onto this node Ê The edit dialog of the node is opened Name and contents of the edit dialog depe...

Page 98: ...ctive widget such as button dropdown switch slider numeric textinput form colour picker gauge chart audio out notification text template or ui control Note Further information can be found in the documentation of Node RED You can find it athttps github com node red node red dashboard Ø Select the desired settings for your widget Ø Click at ð The edit dialog is closed and the settings of your widge...

Page 99: ...ialog Edit link node Ø Specify the desired name of the tab in field Name Ø Specify the link address in the field Link Protocol http or https Ø Specify in field Icon how the link should be opened Options dashboard or open_in_browser Ø Choose whether the link in the browser should be opened within a new tab Option New Tab or within an iframe Option iframe Ø In order to store click at in dialog Edit ...

Page 100: ... The dialog Edit dashboard tab node is opened Figure 66 Dialog Edit link node Ø In order to delete a link click at in dialog Edit link node ð The dialog Edit link node is closed and the link is removed from the link list Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 101: ...nput inject catch status link mqtt http websocket tcp udp fieldbus I O opc ua client s7comm Watson IoT serial Output debug link mqtt http response web socket tcp udp fieldbus LED I O opc ua client s7comm Watson IoT serial Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 102: ...ail out twitter in twitter out Storage file tail file in sqlite file out Analysis sentiment Advanced watch feedparse exec Cloud azureiothub Modbus Modbus Response Modbus Read Modbus Getter Modbus Flex Getter Modbus Write Modbus Flex Write Modbus Server Modbus Queue Info Modbus Flex Connector Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher...

Page 103: ...n switch slider numeric text input date picker colour picker form text gauge chart audio out notification ui control template Table 38 List of standard nodes Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 104: ...er always contains a further entry Add new mqtt broker to add a new MQTT broker if no MQTT broker has been defined yet or if already existing brokers are not to be used Topic Input field In the input field Topic you can enter the topic for the MQTT communication If no name has been entered but an input has been made under Topic this input will be used as node name in the Node RED workspace Topic c...

Page 105: ...ntegrated MQTT broker of the Edge Gateway Port Input field Here you enter the port via which Node RED communicates with MQTT Port 1883 for standard MQTT or 8883 for MQTT with TLS encryption is usually used here Client ID Input field If the box Use clean session is not checked you have to enter the client ID here to identify the client If the box Use clean session is checked no entry is required be...

Page 106: ... checking this box the MQTT protocol will be transmitted to SSL TLS via a secure connection with encryption For reason of data security we recommend checking this box Verify server certificate Checkbox By checking this box the security certificate of the server will be verified which will cause the browser to send security messages in case of problems with the certificate This checkbox is active o...

Page 107: ...he three values 0 1 and 2 The meaning of these values is as follows 0 At most once no acknowledge by the receiver 1 At least once the sender stores the message until it receives an acknowledge from the receiver 2 Exactly once Sender and receiver acknowledge the message using additional acknowledge messages Retain Selection list Here you can set whether the connection is to be maintained after use ...

Page 108: ... set the selection list QoS Quality of Service to one of the three values 0 1 and 2 The meaning of these values is as follows 0 At most once no acknowledge by the receiver 1 At least once the sender stores the message until it receives an acknowledge from the receiver 2 Exactly once Sender and receiver acknowledge the message using additional acknowledge messages Retain Selection list Here you can...

Page 109: ... MQTT protocol using the MQTT function publish Figure 73 MQTT output node Parameters of the MQTT output node This section describes the parameters of the MQTT output node Figure 74 Dialog box Edit MQTT out node Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 110: ...er stores the message until it receives an acknowledge from the receiver 2 Exactly once Sender and receiver acknowledge the message using additional acknowledge messages Retain Selection list Here you can set whether the connection is to be maintained after use TRUE The connection is to be maintained FALSE The connection will be terminated Name Input field Here you enter the name of the MQTT outpu...

Page 111: ...ver always contains an entry Add new OPC UA client to add a new OPC UA server if no OPC UA server has been defined yet or if already existing servers are not to be used Variable Display field Here the name of the variable is displayed the data of which is read The name of a variable will be displayed only after a variable has been selected with the Browse function This requires a connection to the...

Page 112: ...erver Figure 77 Dialog box Add new opcua client config node The address of the OPC UA server is structured as follows opc tcp IP addresse port Example opc tcp 192 168 253 12 4840 Port 4840 is the standard port for unencrypted OPC UA communication The following figure shows a configured Home tab Figure 78 Dialog box Edit opcua in node tab Home Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN...

Page 113: ...dd new opcua client config node see above Ø Transmit the OPC UA input node to the Edge Gateway using Deploy The left window of the tab Browse displays the objects of the server s address space within a tree structure The right window displays the attributes of the object selected in the left window Tab Mode In the tab Mode you select the parameters for the operating mode Subscribe or Polling under...

Page 114: ...value The value is transmitted only The value is transmitted without time stamp specific Only data that you can select by checking one box or several boxes will be transferred The time stamp will be transferred too Table 46 Options of the payload list By selecting the option specific you can select the attributes to be transmitted in the payload Figure 82 OPC UA in specific payload Edge Gateway NI...

Page 115: ...itions of the data transmission via OPC UA at a specific time You can set that the data is transmitted regularly at defined selectable weekdays at a fixed time interval between time Additionally you can limit the space of time in which the periodic repetitions at every take place to an exact time range between and and defined weekdays Table 47 Options of the list Repeat Edge Gateway NIOT E TIB100 ...

Page 116: ...onds Priority Relative priority Keep Alive Number of empty messages sent until the client is informed about timeout of session Sampling Period of time during which the monitored parameters can be processed and analyzed in milliseconds Queue size Number of the elements of the queue Discard old If selected old values are discarded Table 48 Parameters in Subscription Settings and Monitored Items Sett...

Page 117: ...they will be listed here The selection list Server always contains an entry Add new OPC UA client to add a new OPC UA server if no OPC UA server has been defined yet or if already existing servers are not to be used NodeID Display field Here the name of the variable is displayed the data of which is written The name of a variable will be displayed only after a variable has been selected with the B...

Page 118: ...53 12 4840 Port 4840 is the standard port for unencrypted OPC UA communication Tab Browse Figure 88 Dialog box Edit OPC UA out node tab Browse The left window of the tab Browse displays the objects in a tree structure The right window displays the attributes of the object selected in the left window To be able to use the browser function you must have entered the OPC UA server address transmitted ...

Page 119: ...to establish a connection with the Edge Gateway page 22 2 The Node RED workspace is open Step by step instructions 1 Inserting an inject node Ø Drag an inject node from the node library and drop it in the worksheet 2 Showing the sidebar Ø Show the sidebar with the key combination Ctrl spacebar or via the Node RED menu View Show Sidebar Ø Click the tab Info Ø Click the inject node to show its prope...

Page 120: ...e false complete false x 330 y 20 0 wires id b2605825 aea4d type inject z 9deaf786 3854a name topic payload payloadType date repeat crontab once false x 138 y 188 5 wires 46ae085e 4fd768 Testing the flow and displaying messages Ø Click the tab Debugin the sidebar Ø Click the left button at the inject node ð The sidebar should display numbers In the standard default setting the inject node uses the...

Page 121: ...tions 1 Inserting an MQTT input node Ø Drag an MQTT input node from the node library and drop it in the worksheet Ê The red triangle the MQTT input node is displayed with indicates that the node still needs some more parameters which you have to configure in the following steps 2 Showing the sidebar Ø Show the sidebar using the keyboard shortcut Ctrl spacebar or via the Node RED menu View Show Sid...

Page 122: ... Ø Enter the name localhost in the field Server of the tab Connection By means of localhost you address the MQTT broker integrated in the Edge Gateway Ø For this simple example you can adopt the preset parameters without having to enter any further parameters Ø Click Add Ê The MQTT broker is configured Ê The dialog box returns to the first edit dialog Ê Under Server the edit dialog shows the addre...

Page 123: ...rop it in the worksheet 7 Connecting the nodes Ø To connect the MQTT node with the Debug node hold down the left mouse button and draw a connecting line wire from the output port of the MQTT node to the input port of the Debug node ð 8 Deploy Ø Click Deploy to transmit the nodes that have so far existed in the editor only to the device and activate them ð The flow is activated in the Edge Gateway ...

Page 124: ...alse compatmode true keepalive 60 cleans ession true willTopic willQos 0 willPayload birthTop ic birthQos 0 birthPayload Testing the flow and displaying messages Ø Click the tab Debugin the sidebar Ø Use a device that is externally connected to the Edge Gateway to execute a publish with MQTT on topic Timestamp1 or Copy and use the example MQTT output node see section Example 3 MQTT output node pag...

Page 125: ...rting an Inject node Ø Drag an Inject node from the node library and drop it in the worksheet 2 Inserting an MQTT output node Ø Drag an MQTT output node from the node library and drop it in the worksheet Ê The red triangle the MQTT output node is displayed with indicates that the node still needs some more parameters which you have to configure in the following steps 3 Showing the sidebar Ø Show t...

Page 126: ... with step 6 Ê The dialog box Add new mqtt broker config node will be displayed Ø Enter the name localhost in the field Server of the tab Connection By means of localhost you address the MQTT broker integrated in the Edge Gateway Ø For this simple example you can adopt the preset parameters without having to enter any further parameters Ø Click Add Ê The MQTT broker is configured Ê The dialog box ...

Page 127: ...eared 7 Connecting the nodes Ø To connect the Inject node with the MQTT node hold down the left mouse button and draw a connecting line wire from the output port of the Inject node to the input port of the MQTT node ð 8 Deploy Ø Click Deploy to transmit the nodes that have so far existed in the editor only to the device and activate them ð The flow is activated in the Edge Gateway The section MQTT...

Page 128: ...ns ession true willTopic willQos 0 willPayload birthTop ic birthQos 0 birthPayload Testing the flow and displaying messages Ø Use a device that is externally connected to the Edge Gateway to execute a subscribe with MQTT on topic Timestamp1 or Copy and use the example MQTT input node see section Example 2 MQTT input node page 121 ð With each click on the button at the Inject node the topic Timesta...

Page 129: ...UA server is connected to the Edge Gateway 4 The IP address of the OPC UA server is known to you Step by step instructions 1 Inserting the OPC UA input node Ø Drag an OPC UA input node from the node library and drop it in the worksheet Ê The red triangle the OPC UA input node is displayed with indicates that the node still needs some more parameters which you have to configure in the following ste...

Page 130: ...list displays Add new opcua click Edit to add a new server Ø Enter the server address in the field Server in the form opc tcp IP address 4840 e g opc tcp 192 168 253 12 4840 Port 4840 is the OPC UA standard port Ø Click Add or Update Ê The dialog box returns to the first edit dialog Ê Under Server the edit dialog displays the IP address and the port Edge Gateway NIOT E TIB100 GB RE Remote DOC17050...

Page 131: ...g the IP address the device configuration etc If required repeat a Deploy Ê If the OPC UA node has a connection to the server node status connected will be displayed 6 Selecting the object Ø To open the edit dialog double click the OPC UA input node Ø Click the tab Browse Ê If the OPC UA node has no connection to the server the node can neither read nor display the address space of the server In t...

Page 132: ...ct the operating mode for the data transfer e g polling Ø Under Payload select the scope of payload E g select specific and check the boxes BrowseName and Value to transfer the name and the value with a time stamp Ø Under Repeat select how often and when the object is to be read e g interval and 10 seconds so that the object is read every 10 seconds Edge Gateway NIOT E TIB100 GB RE Remote DOC17050...

Page 133: ...ad_DIN1 Ê The configuration of the OPC UA input node is completed Ø Click Done Ê The configuration of the OPC UA input node is finished and the red triangle has disappeared The blue circle indicates that the modified node has not yet been transferred into the Edge Gateway Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 134: ...des that have so far existed in the editor only to the device and activate them ð The flow is activated in the Edge Gateway The section OPC UA input node page 111 describes the parameters of the OPC UA input node Testing the flow and displaying messages Ø Click the tab Debugin the sidebar ð If the OPC UA input node has a connection to the OPC UA server the Debug node displays every 10 seconds mess...

Page 135: ...e Edge Gateway 4 The IP address of the OPC UA server is known to you Step by step instructions 1 Inserting the first Inject node Ø Drag an Inject node from the node library and drop it in the worksheet 2 Configuring the Inject node Ø To open the edit dialog double click on the Inject node Ê The edit dialog for entering the parameters will be displayed Ø Select the entry number from the Payload lis...

Page 136: ...er 2 Ø In the field Topic enter the name of the topic e g Write2 Ø In the field Name enter the name of this node e g Write number 2 Ê All parameters are entered 5 Inserting the OPC UA output node Ø Drag an OPC UA output node from the node library and drop it in the worksheet Ê The red triangle the OPC UA output node is displayed with indicates that the node still needs some more parameters which y...

Page 137: ... Click the OPC UA output node to display its properties and a functional description in the tab Info 7 Editing the OPC UA output node Ø To open the edit dialog double click on the OPC UA output node Ê The edit dialog for entering the parameters will be displayed Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 138: ...ransfer the node At first click Done and then Deploy to transmit the nodes that have so far existed in the editor only to the device and activate them Ê The Edge Gateway executes the OPC UA node The OPC UA node tries to establish a connection to the server Ê If the OPC UA node has no connection to the server node status disconnected will be displayed Objects cannot be read Only after establishing ...

Page 139: ...he OPC UA output node E g check the Ethernet wiring the IP address the device configuration etc If required repeat a Deploy Ø If the OPC UA node has a connection to the server the node reads and displays the address space of the server Ø To select the object to be read e g DOUT1 from the address space open the elements in the tree structure Ø Click Home Ø In the field Topic enter the name of the t...

Page 140: ... the left mouse button and draw a connecting line wire from the output port of the Inject node to the input port of the OPC UA node Ø Connect the second Inject node with the OPC UA output node Ê The nodes are connected 12 Deploy Ø Click Deploy to transmit the nodes that have so far existed in the editor only to the device and activate them ð The flow is activated in the Edge Gateway The section OP...

Page 141: ...utton to the left of Inject node 1 Ê Value 1 will be written to object DOUT1 in the OPC UA server Ø Click the button to the left of Inject node 2 Ê Value 2 will be written to object DOUT1 in the OPC UA server Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 142: ... Using the web browser to establish a connection with the Edge Gateway page 22 2 The Node RED workspace is open Step by step instructions 1 Inserting the fieldbus input node Ø Drag a fieldbus input node from the node library and drop it in the worksheet Ê The red triangle the fieldbus node is displayed with indicates that the node still needs some more parameters which you have to configure in the...

Page 143: ...ll be displayed 4 Adding the fieldbus input node Ø If you use a fieldbus node for the first time the fieldbus interface list displays Add new fieldbus interface click Edit to add a new fieldbus interface Ê The fieldbus configuration node will be displayed Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 144: ...plays the entry PROFINET IO Device click Open Fieldbus Configurator Ê A new tab with the PROFINET configuration interface will be displayed 7 Configuring PROFINET Ø Click IO and Signal configuration in the configuration tree left Ê The page IO Configuration with the list of Available IO items will be displayed Ø At first double click the entry 16 send byte inputs in the list of Available IO items ...

Page 145: ...played for each module 9 Defining signals for module 1 Ø Select 001 16 send byte inputs in the configuration tree Ê The signal configuration page with information on module 001 will be displayed Ø Mark the available signal in the signal list Ø Click Delete selected items Ø Click Add new signals Ê The Add new signals dialog box will be displayed Ø Select the data type Signed16 Ø Select the quantity...

Page 146: ...n Ø To save the configuration in the Edge Gateway click Project Save in the main menu of the PROFINET configuration Ê A message confirms that the configuration has been saved successfully Ø Click Ok Ê The PROFINET configuration and signal definition are saved in the Edge Gateway but they are not activated yet 12 Returning to Node RED Ø Return to the tab Node RED in your browser Ø To adopt a new ch...

Page 147: ...way 16 Inserting a Debug node Ø Drag a Debug input node from the node library and drop it in the worksheet 17 Connecting the nodes Ø To connect the fieldbus node with the Debug node hold down the left mouse button and draw a connecting line wire from the output port of the fieldbus node to the input port of the Debug node 18 Deploy Ø Click Deploy to transmit the nodes that have so far existed in t...

Page 148: ...ion 3 9 build 0 revision 6 expectedFirmwarePath selectedChannelNumber 2 selectedD eviceNumber 1291105 selectedSerialNumber 20726 Testing the flow and displaying messages For testing the flow you need a connection to a configured PROFINET IO Controller which cyclicly exchanges I O data with the Edge Gateway At the PROFINET IO Controller you have to set output data so that the fieldbus input node ca...

Page 149: ...s a value for Error that is unequal to 0 i e the PROFINET communication does not work Figure 95 Message of the fieldbus input node with error Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 150: ...e uses the fieldbus output node together with two Inject nodes to send data to the fieldbus Prerequisite 1 A connection to the Edge Gateway is established see section Using the web browser to establish a connection with the Edge Gateway page 22 2 The Node RED workspace is open Step by step instructions 1 Inserting the first Inject node Ø Drag an Inject node from the node library and drop it in the...

Page 151: ...ntry number and enter number 1 Ø Enter in the field Topic the name of the topic e g Send1 Ø Enter in the field Name the name for this node e g Send number 1 Ê All parameters are entered 3 Inserting the second Inject node Ø Drag another Inject node from the node library and drop it in the worksheet Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hi...

Page 152: ...g Send2 Ø Enter in the field Name the name for this node e g Send number 2 Ê All parameters are entered 5 Inserting the fieldbus output node Ø Drag a fieldbus output node from the node library and drop it in the worksheet Ê The red triangle the fieldbus node is displayed with indicates that the node still needs some more parameters which you have to configure in the following steps Edge Gateway NI...

Page 153: ... the fieldbus node Ê The edit dialog for entering the parameters will be displayed 8 Adding a fieldbus interface Ø If you use an fieldbus node for the first time the fieldbus interface list displays Add new fieldbus interface click Edit to add a new fieldbus interface 9 Selecting the fieldbus interface Ø Check whether Currently loaded firmware displays the entry PROFINET IO Device Version Ø If it ...

Page 154: ...uble click the entry 16 send byte inputs Ø Then double click the entry 16 receive byte outputs Ê The list of IO items displays 2 PROFINET modules 12 Defining signal names for modules Ø In the column Tag of the list IO items click send_001 index 001 named 16 send byte inputs Ø Overwrite the available Tagname with the following new Tagname toController Ø In the column Tag of the list IO items click ...

Page 155: ...ion page with information on module 002 will be displayed Ø Mark the available signal in the signal list Ø Click Delete selected items Ø Click Add new signals Ê The Add new signals dialog box will be displayed Ø Select the data type Signed16 Ø Select the quantity 8 Ø Under tag name base enter Set_temperature Ø Click Ok Ê Column Tag displays Set_temperature_1 to Set_temperature_8 If required you ca...

Page 156: ...e the edit dialog with Done and double click to reopen the fieldbus node 19 Finishing the fieldbus input node Ø Click Done ð The configuration of the fieldbus input node is completed but not yet activated in the Edge Gateway 20 Connecting the nodes Ø To connect the first Inject node with the fieldbus output node hold down the left mouse button and draw a connecting line wire from the output port o...

Page 157: ...tedConfigPath currentFir mwareName PROFINET IO Device Version 3 9 build 0 revision 6 currentInterfaceName cifX0 PROFINET IO Device expectedInterfaceName cifX0 PROFINET IO Device expectedFirmwareName PROFINET IO Device Version 3 9 build 0 revision 6 expectedFirmwarePath selectedChannelNumber 2 selectedD eviceNumber 1291105 selectedSerialNumber 20726 Testing the flow and displaying messages For test...

Page 158: ...ives output data from the master Fieldbus master e g PROFINET IO controller fieldbus input node Standard procedure 1 Inserting the fieldbus input node 2 Configuring the fieldbus system e g PROFINET 3 Defining the signals 4 Configuring the fieldbus input node The fieldbus output node fieldbus out sends input data to the master Fieldbus output node fieldbus master e g PROFINET IO controller Standard...

Page 159: ...ration steps Open fieldbus node Open PROFINET configuration Configure modules Fieldbus node configured Project Save Define signals Reconfigure Update Deploy Table 51 Configuration steps Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 160: ...quisite The Node RED workspace is open 1 Inserting and opening the fieldbus node Ø Drag a fieldbus node from the node library and drop it in the workspace Ø Double click the fieldbus node ð The edit dialog Edit fieldbus in node will be displayed Figure 97 Edit dialog Edit fieldbus in node Ø Click on Edit Ê The edit dialog Add new fieldbus interface config node will be displayed Edge Gateway NIOT E...

Page 161: ...e list is empty if no fieldbus interface has been defined yet Figure 98 Dialog box Add new fieldbus interface config node Ê If one or several fieldbus interfaces have already been defined the interface s will be offered for selection in the list Figure 99 Dialog box Add new fieldbus interface config node Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Pu...

Page 162: ...master If this option is cleared the output data hold their last state during deploy In this case the master has no information that the Edge Gateway does not process the received data anymore Ø Click Open fieldbus configurator ð The user interface for the fieldbus configuration of the Edge Gateway will be opened in a new browser window the example shows the PROFINET configuration Figure 100 PROFI...

Page 163: ... and outputs to be configured double click the appropriate entry in the upper table Available IO items e g 4 byte input and 8 byte output Note Use the scroll bar to display further entries Figure 101 Available IO items Example in figure PROFINET Ê After each double click the corresponding entry for defining an input or output signal will be displayed immediately in a new line of the lower table IO...

Page 164: ...le data length is used up with the button Ø In the table columns Tag and Description you can enter a short name and a description for each defined signal Note For more information on the signal definition see section Defining signals procedure page 185 5 Saving the signal configuration Ø Save your signal configuration via the menu function Project Save Ø The configuration is prepared Ø Return to t...

Page 165: ... and signal definitions Ø Click the button Add in the dialog Add new fieldbus interface config node Ê This operation causes the transmission of the fieldbus configuration to the device and the update of the signal definitions to the fieldbus node 7 Deploy Ø Perform a Deploy in the Node RED For this purpose select one of the three options of the selection list Deploy in the Node RED window top righ...

Page 166: ...n the example shown but PROFINET IO Device is actually loaded Figure 104 Error message Firmware mismatch In that case check whether the desired firmware is really set under Fieldbus interface If this is not the case select the desired firmware in the list Fieldbus interface and click Reconfigure interface Figure 105 Reconfigure interface Note For a detailed description of what happens when you cli...

Page 167: ...rkspace contains a fieldbus node The node represents the previous fieldbus configuration of the Edge Gateway 1 Opening the fieldbus node for changing Ø In the workspace double click on the fieldbus node to be changed It is assumed that the node shown in the examples is preconfigured for PROFINET Figure 106 Fieldbus node Ê The edit dialog Edit fieldbus in node will be displayed Figure 107 Dialog Ed...

Page 168: ...nfigured In addition to that there is an entry Add new fieldbus interface for adding a new fieldbus interface Figure 108 Dialog Edit fieldbus in node Ø Select the interface to be changed in the example this is cifX0 PROFINET Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 169: ... signals on deploy if during deploy the fieldbus node should set the output data received by the master to 0 In this case the Edge Gateway can signal no valid data to the master If this option is cleared the output data hold their last state during deploy In this case the master has no information that the Edge Gateway does not process the received data anymore Ø Click Open fieldbus configurator F...

Page 170: ...odules Ø Make your changes in the fieldbus configuration The possibilities you have for this purpose are described in the chapters Configuration tree page 178 and Menu commands page 175 4 Defining signals Ø If required adapt the signal definitions as you desire 5 Saving the signal configuration Ø Once you have made all desired changes save your fieldbus configuration as described in section Projec...

Page 171: ...of the output signals of the fieldbus node during the deploy process Select Clear output signals on deploy if during deploy the fieldbus node should set the output data received by the master to 0 In this case the Edge Gateway can signal no valid data to the master If this option is cleared the output data hold their last state during deploy In this case the master has no information that the Edge...

Page 172: ...dge Gateway and the new configuration will be applied in the Edge Gateway If the GUI in step 4 could not successfully be started a message similar to the following appears Figure 113 Error message Firmware mismatch That means that the expected firmware and the actually determined firmware do not match Check your settings in such a case Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revisi...

Page 173: ...tuation If the same firmware is selected under Currently loaded firmware and Fieldbus interface the following message box appears Figure 114 Message box firmware already on board Ê That means that the firmware has not been exchanged The currently loaded firmware as well as its version number build number and revision number are displayed in the message box If the firmware loaded under Currently lo...

Page 174: ... OK ð Clicking OK triggers the following actions 1 The previous firmware will be deleted 2 The bootloader will be loaded into the Edge Gateway 3 The bootloader will be executed to load the selected firmware into the Edge Gateway 4 The new firmware loaded will be started Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 175: ...er interface 12 2 Menu commands The menu bar of the PROFINET configuration of the netIOT Edge Gateway allows you to save the configuration in the Edge Gateway see Project Save page 176 download the GSDML file from the Edge Gateway see GSDML Download page 176 print the configuration see Printing the configuration page 176 call the help page see Help Contents page 177 and display the software versio...

Page 176: ...T controller To download the GSDML file proceed as follows Ø Click Download GSDML ð A dialog to save the GSDML file is displayed Ø Select a folder and click Save Ø Use the saved GSDML file to configure the PROFINET Controller 12 2 3 Printing the configuration To print configuration and signal definition proceed as follows Ø Click Print Print configuration ð The print dialog box will be displayed Ø...

Page 177: ... ð The integrated documentation is displayed 12 2 5 Help Information To display the version of the PROFINET configuration software of the netIOT Edge Gateway proceed as follows Ø Click Help Info ð The version will be displayed Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 178: ...ignal names GSDML file download Download and displaying the GSDML file Download of the GSDML file page 189 Help Contents Displaying help Help page 189 Info Displaying current software version Table 53 PROFINET configuration tree 12 3 1 PROFINET configuration This page only contains a note on the setting of the PROFINET device name Figure 117 Note Name of station Note In the factory setting of the ...

Page 179: ...the lower table are the basis for the signal definition Figure 118 List of the possible input and output modules Figure 119 List of the configured input and output modules The table IO items shows you the configured PROFINET input or output modules Column name Description Index Shows the module index Name Shows the name of the module Tag Editable short name required for the signal name The signal ...

Page 180: ...plicates the marked IO item module Note This changes the PROFINET configuration of the Edge Gateway and has to be taken into account when configuring the PROFINET controller Deletes the marked IO item module Note This changes the PROFINET configuration of the Edge Gateway and has to be taken into account when configuring the PROFINET controller This selection allows you to filter the IO items Send...

Page 181: ...ule name Tag Shows the short name required for the signal name Length in bytes Shows the module length in bytes Length in bits Shows the module length in bits Byte offset Shows the start address of the module offset in bytes in the input and output data memory The offset will be calculated automatically Table 56 Contents of table IO item In the table Signals you can configure the signals for an IO...

Page 182: ...s 0 9 and underscore Do not enter two ore more underscores in succession The following table lists the controls of the table Signals Controls Description Moves the marked signal upward by one line Moves the marked signal downward by one line Adds a new signal A dialog box for selecting the data type is displayed You can set the data type of the signal in this dialog box only Deletes the marked sig...

Page 183: ... of the signal names Signal names address the fieldbus data General structure of the signal names Signal names have the following structure input module_tag signal_tag output module_tag signal_tag For a bit list the signal names have the following structure input module_tag bitlist_signal_tag output module_tag bitlist_signal_tag Parts of the signal name 1 The prefix input or output is produced aut...

Page 184: ...or the signal name to address the data 3 Entering the description of the IO item optional Ø In the column Description you can enter a text e g temperature sensor which helps you describe the use of the data Ê This description is used only if you print the signal list 4 Configuring PROFINET Ø Repeat steps 1 3 until all required IO items modules are inserted into the IO Item list ð The PROFINET conf...

Page 185: ...fine a new signal for this purpose Example 1 The IO item contains 16 bytes If you want to access each single byte define 16 signals of data type byte each Example 2 The IO item contains 2 bytes that correspond to 16 digital input or outputs If you want to access each single bit define 16 signals of data type bit each Defining your own new signals 1 Selecting the IO item module Ø Select the IO item...

Page 186: ...r all signal names enter a text in the input field Tag name base The extension _1 _2 etc will be added automatically if you have entered a value greater than 1 under Quantity Ø Click OK ð The new signal s is are defined and will be displayed in the table Signals 5 Modifying signals subsequently Ø If required you can subsequently modify the signal names in the column Tag of the table Signals Ø If r...

Page 187: ...ate in the fieldbus node so that the fieldbus node reads the signal definition again Ø To activate the configuration click Reconfigure in the fieldbus node as soon as you have finished or changed the configuration The name in the column Tag is a part of the signal name and is described as Signal_tag or Bitlist_signal_tag in section Structure of the signal names page 183 Edge Gateway NIOT E TIB100 ...

Page 188: ...gnal 1 to 3 digits Name Shows the name of the module or signal Tag Short name required for the signal name The signal name addresses the data Data type Sows the data type of the module or signal Length in bits Shows the length of the module or signal in bits Byte offset Shows the start address offset in bytes for a module in the input or output data memory The offset will be calculated automatical...

Page 189: ... GSDML file is represented in different colors Violet Names of elements Black Texts Black and bold Names of attributes Red Values of attributes Download of the GSDML file Ø click on the ZIP file The ZIP file contains the device description file GSDML V2 31 HILSCHER NIOT E TIB100 GB RE xxxxxxxx xml Ê Your PC displays a dialog for saving the GSDML file Ø Select a folder and click Save Ø Use the save...

Page 190: ...ation user interface 13 2 Menu commands The menu bar of the EtherNet IP configuration of the netIOT Edge Gateway allows you to save the configuration in the Edge Gateway see Project Save page 191 print the configuration see Printing the configuration page 192 download the EDS file from the Edge Gateway see EDS Download page 191 call the help page see Help Contents page 192 and display the software...

Page 191: ... and is required for configuring the Ethernet IP Scanner Download the EDS file from the Edge Gateway in order to use it in the configuration tool of the Ethernet IP Scanner To download the EDS file proceed as follows Ø Click Download EDS A dialog for saving the EDS file will be displayed Ø Select a folder and then click Save Ø Use the saved EDS file to configure the EtherNet IP Scanner Edge Gatewa...

Page 192: ... current configuration and signal definition will be printed 13 2 4 Help Contents The Edge Gateway contains integrated documentation Ø Click Help Contents ð The integrated documentation is displayed 13 2 5 Help Information To display the version of the EtherNet IP configuration software of the netIOT Edge Gateway proceed as follows Ø Click Help Info ð The version will be displayed Edge Gateway NIO...

Page 193: ...efined receive signal names EDS file download Download of EDS file and contents of EDS file Download of the EDS file page 204 Help Contents Displaying online help Help page 204 Info Displaying current software version Table 62 EtherNet IP configuration tree 13 3 1 EtherNet IP configuration Figure 125 IP Settings This page allows to define the method used for assigning an IP address to the Edge Gat...

Page 194: ...re the send and receive assemblies for EtherNet IP within the Edge Gateway The Edge Gateway works as an EtherNet IP Adapter In the context of EtherNet IP an IO Item corresponds to an EtherNet IP send or receive assembly The upper table Available IO items displays the list of the possible selectable send and receive assemblies The Send Assembly IO item Send Instance ID usually 100 acts as a produce...

Page 195: ...l name addresses the data Description Editable description of the assembly Data length Contains the length of the assembly in bytes Byte offset Shows the start address of the assembly offset in bytes in the input and output data memory The offset is calculated automatically Table 64 Contents of the table IO items The column Tag is editable for each assembly The Tag is an essential part of the sign...

Page 196: ...er function again delete any text entered in the filter input field and press the Enter key Table 65 Controls of the table IO Items 13 3 2 1 Signal definition page On this page you can define the signals for the input and output assemblies of the EtherNet IP for the Edge Gateway Signal names are required for the fieldbus node to address EtherNet IP data The table IO item provides information on th...

Page 197: ...ription Editable description of the assembly Data type Data type of the signal You can set the data type only when you add a new signal Length in bits Shows the assembly length in bits Bit offset Shows the configured start address for a signal within the assembly offset in bytes Table 67 Contents of the table IO items The column Tag is editable for each signal The Tag is an essential part of the s...

Page 198: ...text you have entered in the filter input field and press the Enter key Table 68 Controls of the table Signals 13 3 2 2 Data types for signal names The following table lists the data types for signal names Name of data type Description Length in bits Allowed value range bit list List of single bits The number of bits in the list must be a multiple of 8 1 0 false 1 true octetString String of octets...

Page 199: ...nd the signal_tag or the assembly_tag and the bitlist_signal_tag 5 You can enter the name for signal_tag or bitlist_signal_tag as described in section Defining signals procedure page 200 13 3 2 4 Configuring I O The upper table Available IO items displays the list of the possible selectable send and receive assemblies The lower table IO items displays the EtherNet IP configuration and is empty at ...

Page 200: ...P configuration In the next step define the signal names as described in section Defining signals procedure page 200 13 3 2 5 Defining signals procedure Each IO item assembly contains one or more bytes for input or output data To enable the fieldbus node to access the input or output data you have to select a signal at the fieldbus node You can use the predefined signal name or define your own sig...

Page 201: ...Select the quantity The possible values you can select depend on the selected data type and the number of input or output bytes to which no signal name has been assigned yet Ø To have an identical beginning for all signal names enter a text in the input field Tag name base The extension _1 _2 etc will be added automatically if you have entered a value greater than 1 under Quantity Ø Click OK ð The...

Page 202: ...pdate in the fieldbus node so that the fieldbus node reads the signal definition again Ø To activate the configuration click Reconfigure in the fieldbus node as soon as you have finished or changed the configuration The name in the column Tag is a part of the signal name and is described as Signal_tag or Bitlist_signal_tag in section Structure of the signal names page 199 Edge Gateway NIOT E TIB10...

Page 203: ...x Shows the index of the assembly 3 digit or signal 1 to 3 digits Name Shows the name of the assembly or signal Tag Short name required for the signal name The signal name addresses the data Data type Shows the data type of the assembly or signal Length in bits Shows the length of the assembly or signal in bits Byte offset Shows the start address offset in bytes for an assembly in the input or out...

Page 204: ...DS file Ø Click the file with the extension ZIP The ZIP file contains the device description file HILSCHER NIOT E TIB100 GB RE EIS V1 1 EDS Ê A dialog for saving the ZIP file is displayed Ø Select Save and then click on OK Ø Select a folder and click Save Ø Extract the ZIP file to get the EDS file Ø Use this EDS file to configure the EtherNet IP Scanner 13 3 5 Help Contents Opens a page offering a...

Page 205: ...rect access to the OT network which would counteract the security concept of the Edge Gateway is not possible allows access to processes having been prepared in an automated way e g the scan of the field devices of the OT network automation network or the identification of the topology is used for acquiring the status of the OT network and the field devices connected with this network and to provi...

Page 206: ...ver structure Note For more information on the protocol HTTPS see https en wikipedia org wiki HTTPS on REST APIs see https en wikipedia org wiki Representational_State_Transfer Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 207: ...ork_Management_Protocol Concerning ARP see https de wikipedia org wiki Address_Resolution_Protocol 14 1 3 Access rights to the REST API Access to the REST API is governed by rights as follows 1 In order to request data from the Edge Server using the REST API HTTP method GET read access rights are required 2 In order to make changes within the Edge Server using the REST API HTTP methods PUT and POS...

Page 208: ... POST device processData List of process data GET device processData list FILE file handling File upload firmware configuration device description files general data PUT file GATEWAY information on the gateway Information on installed packages and internal modules GET gateway package info Access to product data GET gateway info PROGRESS information on progress Request of progress information on ru...

Page 209: ...Server for the Edge Gateways Figure 133 Edge Server environment The following figure shows the internal structure of the Edge Server for the Edge Gateways Figure 134 Internal structure of the Edge Server Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 210: ... within the Edge Gateway Manager see Edge Gateway Manager page 24 Figure 135 netIOT Edge Server icon within the Edge Gateway Manager 14 2 2 Functions The Edge Server Control Center provides the following functions Information on the Edge Server Configuration of the Edge Server List of services Scan protocols of field devices Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 Englis...

Page 211: ...l Center The left part of the window lists all services with their name and a symbol indicating the current state of operation of the service Symbol Meaning Running Service is running Info For this service an informative message has been stored see below Warning For this service a warning message has been stored Error For this service an error message has been stored Table 72 Symbols for the state...

Page 212: ...he right part of the window additionally shows the following data concerning the selected service Name of service component Operating status displayed as text Last information Version Description Information on the author Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 213: ...ee Selecting the protocols to scan for field devices page 216 14 3 1 The configuration of IP address area To configure the IP address range used proceed as follows Ø Open the menu System in the Edge Server Control Center and select menu entry Configuration Ê The configuration screen page displays the settings for the server configuration Figure 137 Server configuration Edge Gateway NIOT E TIB100 G...

Page 214: ...w the scanning of the connected devices Ø Under Start address enter the start address of the IP address range e g 192 168 0 1 Ø Under End address enter the end address of the IP address range e g 192 168 0 8 Note For configuring the Edge Gateway we strongly recommend you to set cifX0 to the IP address 192 168 0 8 For the correct configuration of the IP address range the entered IP addresses must f...

Page 215: ...dge Server click ð Now the screen page for the scan settings should look like that Figure 139 Correct configuration of the scan settings Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 216: ...can set the scan protocols to be active or inactive individually for each address of the configured IP address range For the basic registration of the field devices you should activate the scan protocols SNMP and ARP Note Check the boxes IO Link or PROFINET for IP addresses in the configured IP address range only if the corresponding IO Link master devices or PROFINET devices are connected and con...

Page 217: ...ntainer Docker Docker offers a platform for the isolated execution of applications within protected environments and moreover a standard for the distribution of software This platform allows Edge Gateway users to run their own applications within the protected Linux operating system without being able to weaken or evade its safety mechanisms For realizing containers Docker internally uses techniqu...

Page 218: ... e g x86 x64 or ARM If a container is generated from an image make sure that the image is suitable for the hardware platform used For distributing images via the Internet the Docker organization provides a so called repository under https hub docker com Images stored there are freely accessible Users can also manage their own repositories Note For more information on images see the Docker document...

Page 219: ...t Access to resources of the host system as e g host files and ports occurs only if explicitly configured A container consists of a Docker image a runtime environment and a standard command architecture The runtime environment contains e g current information on configuration and status For storing this information Docker generates a virtual drive in the container a so called volume Docker can sta...

Page 220: ...working with the containers To start the portainer io interface proceed as follows Ø Open the Edge Gateway Manager if it is not already open For this purpose see Calling the Edge Gateway Manager page 24 Ø Click the tile Docker Management in the Edge Gateway Manager Figure 141 Tile Docker in the Edge Gateway Manager Ê The portainer io login screen will be displayed In the field Username admin is al...

Page 221: ...he page Dashboard ð The page Container list will be displayed This list contains the names and statuses of all currently known containers and provides the functions for controlling the code execution Figure 143 Container list portainer io Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 222: ... io is open see The portainer io interface page 220 Steps Ø On the page Container list click Ê The page Create container will be displayed Ø In the field Name enter the name of your container e g MyFirstContainer Ø In the field Image of the zone Image configuration enter the name of the image to be executed in the container nginx Ê The system will automatically search for the image in the official...

Page 223: ...nx This example does not require any further settings Ø Click ð The configuration of the container is thus ready for the execution of NGINX Docker will first load the image from the registry duration 2 3 minutes deposit it in the Edge Gateway and transform it into a container thereafter This container will then appear in the container list and its status changes to running To check the correct ins...

Page 224: ...y creation distribution and checking The Edge Gateway stores and prüft digital certificates and can be integrated into a Public Key Infrastructure 16 1 Asymmetric encryption Asymmetric encryption uses a pair of keys consisting of a public key and a private key The private key is used to create signatures and decrypt messages Der public key is used to verify signatures and encrypt messages A server...

Page 225: ...trustworthy certificates stored in its local directory of trustworthy certificates Only if the authenticity check is ok the client uses the received public key 4 The client encrypts the message using the public key and sends the encrypted message to the server 5 The server decrpyt the message using his private key 6 Client and server continue its encrypted communication using one new created prote...

Page 226: ...s a certificate has the following constituents Version Serial number Algorithm ID Time period of validity specifications of begin and end Specifications concerning the issuer of the certificate see below Specifications concerning the owner of the certificate see below Key information concerning the certificate owner Optional Unique ID of the issuer of the certificate Optional Unique ID of the owne...

Page 227: ... or companies Consequently the authenticity check of a certificate is practically done in that way that the complete hierarchy of trust is tracked up to the root certificate whose issuer is determined and a list of well known trustworthy root certificates is searched whether it contains the root certificate at the end of the hierarchy of trust Such lists are maintained by all browser manufacturers...

Page 228: ...SA PRIVATE KEY at the beginning and END RSA PRIVATE KEY at the end Ø DChange the file extension CER or CRT to PEM 16 3 Use cases There are three use cases for working with root client and server certicates and the associated private keys within the public key infrastructure Use case 1 Verification of the authenticity of the communication partner Server page 228 Use case 2 Server certificates for E...

Page 229: ... included root certificates Figure 146 Use case 1 Verification of the authenticity of the communication partner Server A trustworthy certificate can require another trustworthy certificate to verify authenticity A so called Hierarchy of trust page 227 results from this Needed for verification the Edge Gateway requires all trustworthy certificates of a specific server certificate For this if applic...

Page 230: ...of the Edge Gateway uses a separate pair consisting of private key and certificate This certificate contains the public key a signature and furthermore information From the point of view of the Edge Gateway server certificates apply to inbound HTTPS and OPC UA connections Figure 147 Use case 2 Server certificates for Edge Gateway services The file name for the private key is key pem The file name ...

Page 231: ...private key are stored in two separated files and uploaded individually into the Edge Gateway You as the user are solely responsible that the file with the certificate and the file with the private key fit together which you have uploaded into the Edge gateway for logical connection between certificate and private key i e that the public key contained in thespecified certificate fits to the specif...

Page 232: ...file with the certificate and the file with the private key fit together which you have uploaded into the Edge gateway for logical connection between certificate and private key i e that the public key contained in thespecified certificate fits to the specified private key Node RED You can upload several pairs of files one pair for one server in order to use the client certificate functionality Us...

Page 233: ...ization for a specific server on the Edge Gateway page 243 5 Copying the path to a certificate for client authorization for a specific server on the Edge Gateway page 243 With the related key files you can do the following actions 1 Uploading a key file for client authorization for a specific server into the Edge Gateway page 244 2 Downloading a key file for client authorization for a specific ser...

Page 234: ...nce policies security group certs Ø Select the desired entry within window Certificates ð The window Certificate Viewer now shows the data of the selected certificate Structure according to X 509 16 4 2 Upload a trustworthy certificate into the Edge Gateway To upload a trustworthy certificate from a file to the Root Certificate Store of the Edge Gateways proceed as follows Ø Select option Root cer...

Page 235: ...ustworthy To remove a certificate no longer considered as trustworthy from the Linux Trust Store of the Edge Gateway proceed as follows Ø Select option Selection list Root Service Certificates in selection list Selection list Root Service Certificates Ê In window Certificates the Root Certificate Store is displayed in the shape of a list containing certificates originating from the Mozilla CA Cert...

Page 236: ... have uploaded into the Edge gateway for logical connection between certificate and private key i e that the public key contained in thespecified certificate fits to the specified private key 16 5 1 Working with certificates for HTTP and OPC UA Server 16 5 1 1 Uploading the server certificate from a file into the Edge Gateway Note If at one point in time you intend to upload both a server certific...

Page 237: ... communication with the HTTP server Node RED the Edge Server or the REST API fromthe Edge Gateway into a file proceed as follows Ø Select option Service certificates in selection list Selection list Root Service Certificates Ê In window Certificates a tree structure is displayed instead of the former display of the contents of the Linux trust store If the server certificate applies to the communic...

Page 238: ...elow opcua Ê The window Certificate Viewer now displays the data associated to cert pem Ø Click at button Delete in the header of window Certificates Ê A confirmation prompt Are you sure you want to delete the selected file Cert pem is displayed Ø If you are really sure to need the current certificate file not any longer click at Yes ð The selected certificate file is being removed from the Edge G...

Page 239: ...P server Node RED the Edge Server or the REST API Ø Within window Certificates select the entry key pem below nginx Alternatively If the server certificate applies to the communication with the OPC UA Server or mosquitto Ø Within window Certificates select the entry key pem below opcua Ê The window Certificate Viewer is empty Ø Click at button Uploadin the header of window Certificates Ê A file se...

Page 240: ...ates select the entry key pem below opcua Ê The window Certificate Viewer is empty now Ø Click at button Delete in the header of window Certificates Ê A confirmation prompt Are you sure you want to delete the selected file Key pem is displayed Ø If you are really sure to need the current key file not any longer click at Yes ð The selected key file is being removed from the Edge Gateways Root Certi...

Page 241: ...s and uploaded individually into the Edge Gateway You as the user are solely responsible that the file with the certificate and the file with the private key fit together which you have uploaded into the Edge gateway for logical connection between certificate and private key i e that the public key contained in thespecified certificate fits to the specified private key 16 6 1 Working with certific...

Page 242: ... Viewer now shows the data of node opcuaclient_cert pem Ø Click at button Download in the header of window Certificates ð The Download Manager of your Web browser downloads the file from the Edge Gateway and offers you options for further processing of the downloaded file such as Open Open directory 16 6 1 3 Removing a certificate for client authorization for a specific server on the Edge Gateway ...

Page 243: ... for client authorization for a specific server from the Edge Gateway into a file proceed as follows Ø Select option Service certificates in selection list Selection list Root Service Certificates Ø Within window Certificates instead of the list of preinstalled certificates a tree structure is displayed Ø In window Certificates select the entry node opcuaclient_cert pem below node red Ê The window...

Page 244: ...ection list Root Service Certificates Ê In window Certificates a tree structure is displayed Ø In window Certificates select the entry node opcuaclient_key pem below node red Ê The window Certificate Viewernow shows the data of node opcuaclient_key pem Ø Click at button Upload in the header of window Certificates Ê A file selection dialog appears Ø Within that dialog select the key file to be uplo...

Page 245: ...ertificates a tree structure is displayed Ø In window Certificates select the entry node opcuaclient_key pem below node red Ê The window Certificate Viewer now shows the data of node opcuaclient_key pem Ø Click at button Download in the header of window Certificates Ê The Download Manager of your Web browser downloads the key file from the Edge Gateway and offers you options for further processing...

Page 246: ...client_key pem Ø Click at button Delete in the header of window Certificates Ê A confirmation prompt appears Ø If you are really sure not to need the current key file any longer click at Yes ð The selected key file is being removed from the Edge Gateway s Root Certificate Store Note If a key file related to a specific service OPC UA Client or Server is removed then the affected service will not be...

Page 247: ...icates instead of the list of preinstalled certificates a tree structure is displayed Ø In window Certificates select the entry node opcuaclient_key pem below node red Ê The window Certificate Viewer now shows the data of node opcuaclient_key pem Ø Click at buttonCopy path in the header of window Certificate Viewer ð The path to the key file is now being copied into Windows clipboard You can use i...

Page 248: ... 4 8 V DC Current at 24 V DC 750 mA Power of the used power supply unit 18 W Connector 3 pin terminal block IT interface Interface type 2 x 10 100 1000 Mbit Intel I210AT LAN connector 2 x RJ45 socket OT interface OT network PROFINET IO Device EtherNet IP Adapter In listening mode PROFINET EtherCAT Ethernet Interface type 10BASE T 100BASE TX potential free Hilscher netX 100 Connector 2 x RJ45 socke...

Page 249: ...esistance 50 G half sine 11 ms IEC 60068 2 27 Vibration resistance Random 2 Grms 5 500 Hz IEC 60068 2 64 Sinusoidal 2 Grms 5 500 Hz IEC 60068 2 64 usable with netIOT service product only NIOT S LIC xxx Table 76 Techncal data NIOT E TIB100 GB RE Edge Gateway NIOT E TIB100 GB RE Remote DOC170501UM04EN Revision 4 English 2018 08 Released Public Hilscher 2017 2018 ...

Page 250: ... Data transport layer Ethernet II IEEE 802 3 PROFINET IO specification V2 2 legacy startup and V2 3 but advanced startup only for RT are supported Limitations RT over UDP not supported Multicast communication not supported DHCP is not supported FastStartUp is not supported The amount of configured IO data influences the minimum cycle time that can be reached Only 1 Input CR and 1 Output CR are sup...

Page 251: ...Link Objekt TCP IP Objekt Topology Tree Line Ring DLR Device Level Ring Beacon based Ring Node ACD Address Conflict Detection Supported DHCP Supported BOOTP Supported Baud rate 10 and 100 MBit s Data transport layer Ethernet II IEEE 802 3 Switch function Supported integrated Quick Connect not supported The Edge Gateway is designed for cyclic data exchange Acyclic communication for user data transf...

Page 252: ...ut a screw driver into the slot of the latch at the bottom of the device Ø To disengage the lock of the hook pull down the latch with the screw driver Ø Take the device off the top hat rail 18 3 Disposal of waste electronic equipment Important notes from the European Directive 2012 16 EU Waste Electrical and Electronic Equipment WEEE Waste electronic equipment Art und Quelle der Gefahr This produc...

Page 253: ...ing of a user s manual operating manual and any other document type and accompanying texts However errors cannot be ruled out Therefore we cannot assume any guarantee or legal responsibility for erroneous information or liability of any kind You are hereby made aware that descriptions found in the user s manual the accompanying texts and the documentation neither represent a guarantee nor any indi...

Page 254: ...tract typical foreseeable damage It is hereby expressly agreed upon in particular that any use or utilization of the hardware and or software in connection with Flight control systems in aviation and aerospace Nuclear fusion processes in nuclear power plants Medical devices used for life support and Vehicle control systems used in passenger transport shall be excluded Use of the hardware and or so...

Page 255: ...tions or is due to violations against our operating regulations or against rules of good electrical engineering practice or if our request to return the defective object is not promptly complied with Costs of support maintenance customization and product care Please be advised that any subsequent improvement shall only be free of charge if a defect is found Any form of technical support maintenanc...

Page 256: ...information to his own advantage or for his own purposes or rather to the advantage or for the purpose of a third party nor must it be used for commercial purposes and this confidential information must only be used to the extent provided for in this agreement or otherwise to the extent as expressly authorized by the disclosing party in written form The customer has the right subject to the obliga...

Page 257: ...9 License Manager with license for the passive mode of operation 36 Figure 20 License information in window Details 37 Figure 21 Message after the transfer of the license file into the Edge Gateway 39 Figure 22 Control Panel page System Syslog 40 Figure 23 Time configuration page 44 Figure 24 Backup and recovery 47 Figure 25 Warning message 48 Figure 26 Backup in progress 48 Figure 27 Backup and r...

Page 258: ...shboard tab node 95 Figure 63 Dialog Edit dashboard tab node 96 Figure 64 Dialog Edit dashboard tab node 97 Figure 65 Dialog Edit link node 99 Figure 66 Dialog Edit link node 100 Figure 67 MQTT input node 104 Figure 68 Dialog box Edit MQTT in node 104 Figure 69 Dialog box MQTT broker config node tab Connection 105 Figure 70 Dialog box MQTT broker config node tab Security 106 Figure 71 Dialog box M...

Page 259: ... Dialog box Add new fieldbus interface config node 165 Figure 104 Error message Firmware mismatch 166 Figure 105 Reconfigure interface 166 Figure 106 Fieldbus node 167 Figure 107 Dialog Edit fieldbus in node 167 Figure 108 Dialog Edit fieldbus in node 168 Figure 109 Dialog Edit fieldbus interface config node 169 Figure 110 Button Open fieldbus configurator 169 Figure 111 Start screen of the user i...

Page 260: ...Server 209 Figure 135 netIOT Edge Server icon within the Edge Gateway Manager 210 Figure 136 Edge Server Control Center 211 Figure 137 Server configuration 213 Figure 138 Configuration of the scan settings 214 Figure 139 Correct configuration of the scan settings 215 Figure 140 Scan protocol configuration 216 Figure 141 Tile Docker in the Edge Gateway Manager 220 Figure 142 View of portainer io da...

Page 261: ...y PRI 41 Table 19 Numeric coding of severity value in priority PRI 42 Table 20 Assignment of parts of message line 43 Table 21 Setting the system time 44 Table 22 Table LAN Meaning of the columns 58 Table 23 WiFi modes of operation 61 Table 24 WiFi 61 Table 25 Parameters of the operating mode Access point 62 Table 26 Parameters of the operating mode Client 64 Table 27 Operating mode fieldbus inter...

Page 262: ...umns of the table of the send and receive signals 188 Table 61 EtherNet IP configuration user interface 190 Table 62 EtherNet IP configuration tree 193 Table 63 Parameters for setting the IP addresses 194 Table 64 Contents of the table IO items 195 Table 65 Controls of the table IO Items 196 Table 66 Contents of the table IO items 196 Table 67 Contents of the table IO items 197 Table 68 Controls o...

Page 263: ... 8888 750 777 E mail info hilscher in Italy Hilscher Italia S r l 20090 Vimodrone MI Phone 39 02 25007068 E mail info hilscher it Support Phone 39 02 25007068 E mail it support hilscher com Japan Hilscher Japan KK Tokyo 160 0022 Phone 81 0 3 5362 0521 E mail info hilscher jp Support Phone 81 0 3 5362 0521 E mail jp support hilscher com Korea Hilscher Korea Inc Seongnam Gyeonggi 463 400 Phone 82 0 ...