Eurotherm 2216e communication
I plan to purchase a eurotherm 2216e controller. I am not very familar with labview but I want to communicate with this unit. I am not sure if I should get the controller with Modbus or Bisync format. Which is easier to configure? I am using RS232 communication. I need to be able to update a setpoint, update a high and low alarm setpoint as well as the ramp rate.
I am not sure if this is something I should ask the seller (eurotherm).
You have more options if you use Modbus.
1) You can use iTools a configuration and communication software package from Eurotherm. Download available here: http://www.eurotherm.co.uk/products/controllers/itools/ This package will detect the instrument and display all its parameters and their modbus addresses and allow you to change settings and values.
2) If you prefer to use Labview then you can use the Eurotherm 2400 range Labview driver. This can be found in the NI Instrument Driver Library, search for Eurotherm and select 2404.
Alternatively here is the link: http://sine.ni.com/apps/utf8/niid_web_display.model_page?p_model_id=2529
Although this driver is designed for the 24xx range it also supports the 22xx range. The et24xxReadme.html file (Included in the driver) gives more details.
Once you install the vis you can use them to read and write pre configured parameters and create your own application.
If you need other parameters that are not available in the existing vis, you can use the Read and Write vis and enter the modbus addresses for the parameters you want to use.
The “2000 Series MODBUS and EI-BISYNCH Digital Communications Handbook” has all the information you need (modbus addresses, wiring, diagrams, etc). Available for download form: http://www.eurotherm.co.uk/document-library/?ignoreeveryonegroup=0&assetdetesctl1357234=1833&search=...
Dimitris
Similar Messages
-
Communication avec un eurotherm 2216e
Bonjour,
Je souhaite communiquer avec un eurotherm 2216e (équiper de capteur de pression d'air) par liaison serie RS232.
J'ai utiliser MAX en le configurant avec les bon paramétres (vitesse, bits de données, etc ..), ici en piéce jointe, avec le viSetAttribute mais lorsque que j'envoie la commande " *IDN? " avec le viWrite et que j'essaye lire la réponse avec le viRead, j'obtient toujours l'erreur " BFFF0015 " (erreur d'espiration du timeout, qui est pourtant de 2000ms ....).
Mais j'arrive à communiquer avec l'eurotherm avec Itools...
Labview 2010 (version d'essai) sur PC portable (j'utilise également un transformateur USB/RS232)
Cordialement,
Vincent.
Pièces jointes :
viSetAttribute.txt 1 KBBonjour,
pouvez-vous détailler votre problématique.
Avez-vous réussi à communiquer avec MAX.
Pouvez-vous poster votre VI.
Avez-vous vérifié les commandes à envoyer à votre appareil ?
Cordialement
Samuel G. | Application Engineer Team Leader
Certified LabVIEW Developer
National Instruments France
#adMrkt{text-align: center;font-size:11px; font-weight: bold;} #adMrkt a {text-decoration: none;} #adMrkt a:hover{font-size: 9px;} #adMrkt a span{display: none;} #adMrkt a:hover span{display: block;}
Été de LabVIEW 2014
12 présentations en ligne, du 30 juin au 18 juillet -
Eurotherm 2416 communication problem in LabView 8.5.1 via COM1
I have downloaded the latest version of a driver ET24xx v from NI site, and it is not working. I am getting Time out error from VISA. I think, the controlled is hooked up properly on my COM1 port. Visual Basic software is able to reach him and to communicate with the controller.
Please help.
Joe
My email is: g e m b a r @ t p r l dot co m (slightly changed for spammers)Howdy Joe,
Several things can cause a VISA timeout. Improper message termination most frequently causes timeouts. Also, which VI in the E24xx driver package do you try to run that times out? After extracting the ET24XX driver to your labview\instr.lib directory, you should be able to access its examples by navigating to Instrument Drivers»ET24XX»Examples in the Functions palette. (Make sure to select the proper COM port on the example's front panel).
Going back to the issue of improper message termination--verify that each message you send to the instrument has a termination character such as \n, \r, \n\r, etc.
Let us know!
Warm regards,
pBerg -
Communicating with Eurotherm via et24xx driver
I am trying to get a Eurtherm model 2408 integrated with
Labview. I have installed the et24xx package and the latest version of VISA. I am receiving an error message right off the
bat (1073807339). Any thoughts?I know what you are talking about now. If you set up the com port in the server, then the scan will work. Open the server from iTools, then configure the com port. Once you select the com port, hit the edit button to set the baud rate. See attachments.
Attachments:
iTools Comm Port.JPG 101 KB
iTools Server.JPG 77 KB
iTools Control Panel.JPG 108 KB -
I am having EXTREME difficulty trying to establish communications with a Modbus device using LV8.2 shared variables. The device is a Eurotherm 6180XIO Datalogger configured as a Modbus master. The PC and a cFP-1804 are slaves. All IP addresses are set correctly. This approach using shared variables would seem simple, but I can't find any examples or proper guidance on how to get it working. I am trying to avoid having to mess around with TCP/IP, OPC, or any other old-fashioned method.
I have read many threads on related topics but none directly apply to this situation. I have created a library containing a Modbus I/O server and shared variables bound to read and write holding registers. I have followed all recommended tips for creating such variables but I can neither read or write data. All data types are U16 due to Modbus protocol limitations. I have also applied the LV x10 factor in the most significant digit in the register offset (6 digits instead of 5).
I have a cFP-1804 on the same network which reads into the datalogger OK. The registers I use are 31000 (for CH0 on module 0, 31002 for CH1, etc) and the data can be read as FLOAT32. I have updated the firmwate on the 1804 to the latest level. I cannot even get shared variables to read SGL values. Using registers 301001 for CH0 and 301002 for CH1 I can only read U16 values, and not a 2-word SGL.
Third party Modbus simulation software is able to write to and read from registers very easily, but not LabVIEW.
Some questions are:
- do I use a Modbus master or slave as an I/O server in the library as a target for binding the shared variables?
- is there some other wierd translation in register offsets between LabVIEW and traditional Modbus?
- is this actually possible using shared variables or am I wasting my time?Sending the whole 60-character string using a string or array would be the most efficient. I have tried both methods, and these only cause the datalogger to flag a message log but no text is displayed.
For a string variable, I have used the following binding "My Computer\Modbus Test.lvlib\ModbusServer6180\442305", where ModbusServer6180 is a Modbus I/O server configured with the logger IP address, and 42304 is the register offset at the start of the text block in the logger. I need to write to 30 consecutive registers starting with this one. I am not using buffering and have not enabled single writer.
Can anyone confirm whether this method should work in 8.2?
Does the string need a special termination character? -
Hello,
I recently downloaded the euotherm labview driver from ni.com and I am using this USB to RS485 converter http://www.kksystems.com/english/html_files/product_pages/usb485.htm for communication, unfortunately I keep getting this error when using both example VI's.
1. When I use the process value monitoring example vi
Error -1073807339 occurred at VISA Read in Eurotherm 32xx Series.lvlib:Utility MODBUS RTU Receive Message.vi->Eurotherm 32xx Series.lvlib:Utility Read From Register - Floating Point.vi->Eurotherm 32xx Series.lvlib:Utility Read From Register - Float or Int.vi->Eurotherm 32xx Series.lvlib:Read Process Variables.vi->Eurotherm 32xx Series Process Value Monitoring.vi
2. When I use the temperature control monitoring example vi
Error -1073807339 occurred at VISA Read in Eurotherm 32xx Series.lvlib:Utility MODBUS RTU Receive Message.vi->Eurotherm 32xx Series.lvlib:Utility Read From Register - Integers.vi->Eurotherm 32xx Series.lvlib:Utility Read From Register - Float or Int.vi->Eurotherm 32xx Series.lvlib:Configure Instrument Mode.vi->Eurotherm 32xx Series Temperature Control Monitoring.vi
Can someone please help with this?And did you check that you have the right cable?
rs485 is not equal to rs232 !
you need two wires for sending and receiving and they should be terminated when the distance is long.
Furthermore your rs485 card should switch from send to receive in time.
greetings from the Netherlands -
I'm writing a labview vi to access the SP,PV and ramp rates etc on a Eurotherm 815 Temperature controller.
I'm using Modbus to acess the eurotherm. Have created an I/O server and a list of items has appeared. I'm not sure which items refer to the eurotherm parameters
and how to comunicate with them/
I've added a pic so u have an idea what i'm talking about. I need help detemining which i/o items refer to to which parameter mnemonics.
Any help would be appreciated
Attachments:
Labview Modbus IO Items.jpg 212 KB
815 & 818 Instruments Communication Mnemonics (TIS136) (258KB).pdf 258 KBHey,
Most devices come with a list that says what variables correspond to what Modbus registers. This device looks like it might not be using Modbus. Do you have documentation saying it's using Modbus?
Britton C.
Applications Engineer
National Instruments -
CONFIGURATION EUROTHERM 2404 ET FTM7 VIA RS232
Bonjour,
je communique avec des eurotherm 2404 (configuration:9600
bauds,data bits:8,parity:none,stop bits:1,flow control:none)
avec une carte multiport RS232 de chez brainboxes
Lorsque j'ouvre le MAX et que je lance une session visa,
avec un port serie, je dois lui envoyer une commande avec
basic I/O
je lui envoie donc vu que je travaille en modbus un nombre
décimal 8836 qui correspond à une commande (type de segment)cependant il me
renvoie toujours la meme erreur:BFFF0015 (délai de timeout expiré) et peut
importe la commande c'est toujours la meme erreur.
Donc mes questions sont:
ma configuration est elle bonne?
y-a-t il une terminaison de caractère à mettre au bout?
quels commandes puis je lui envoyer pour que je puisse
communiquer avec lui malgré que j'ai toute la documentation nécessaire?
de plus, j'utilise des film monitor thickness (FTM7) de chez boc
edwards pour vérifier l'épaisseur déposée des sources qeu j'ai porté à
évaporation grâce aux eurotherm:
dans le max, j'utilise la configuration qui m'est indiqué
dans la documentation de chez boc edwards c'est a dire
(configuration:4800bauds,data bits:7,parity:even,stop bits:2,flow
control:none), je la sauvegarde avec le bouton save , je lance une session cepedant
lorsque je lui indique une commande indiquée dans la documentation , par
exmeple :RESET<cr>, j'ai toujours la meme erreur BFFF0015.
mes questions sont:
est ce la bonne configuration?
le caractère de terminaison est-il bon?
de plus lorsque j'ouvre le max de nouveau après avoir éteind
mon ordinateur, il m'indique un probleme de conflit entre une configuration
visa de base 9600,8,none,1,none et la configuration windows que je lui ai
indiqué.
pourquoi?Bonjour,
Lorsque vous programmez un périphérique en VISA à traves
une couche RS 232 l'utilisation de commandes SCPI (Standard Commands for
Programmable Instrumentation) est nécessaire. Cependant il ya d'autre caractères
additionnels à rajouté lorsqu'il ne s'agit pas d'une communication GPIB : Vous
devez rajouter un "line feed" (LF) ou un "carriage return"
(CR).
Pour réaliser cela il ya deux approches différentes :
ajouter explicitement le caractère de terminaison a la fin de chaque commande
que vous enverrez, ou configurer un attribut global a la session VISA afin de
rajouter automatiquement ce caractère.
J'espère vous avoir correctement aiguillé.
Cordialement,
Richard Keromen
National Instruments France
#adMrkt{text-align: center;font-size:11px; font-weight: bold;} #adMrkt a {text-decoration: none;} #adMrkt a:hover{font-size: 9px;} #adMrkt a span{display: none;} #adMrkt a:hover span{display: block;}
>> Découvrez, en vidéo, les innovations technologiques réalisées en éco-conception -
DEAR SIR, I M TRYING TO COMMUNICATE WITH EUROTHERM 2640 CONTROLLER THROUGH NI PCI 8431/8 PORT RS 485 INTERFACE BUT NOT ABLE TO ESTABLISH THE COMMUINACTION . THE PROTOCOL IS MODBUS AND INTERFACE IS EIA RS 485 ( 2 WIRE) ,NULL MODEM CABLE( CROSS CABLE). FOR COMMUNICATING I HAVE SORTED THE TX + AND RX + AND TX- RX- . I HAVE TRIED NI MODBUS LIBRARY FOR COMMUNICATING BUT NOT ABLE TO DO THE SAME. ON SEARCHING THIS FORUM I CAME TO KNOW ABOUT THE OPC CONNECTIVTY IS POSSIBLE. I M TOTALLY CONFUSED DONT KNOW HOW TO PROCEED.
Hi Rahul,The 2604 controller is a vey versatile instrument and you should not have any problems communicating using Serial Modbus or OPC. I am using both on a daily basis to communicate with the controller, the DataSocket Vis together with iTools (iTools OPC server) and our own Serial Modbus vis for Serial Modbus RS232 and EIA485.I have also used the NI Modbus library to communicate a 2604 controller without any problems.Before I assist you any further we need to identify if the problem is in the hardware, (i.e. incorrect wiring) or is in the software,( i.e. incorrect configuration, settings, etc). Therefore can you please give me a detailed diagram of your wiring from the PCI card to the controller including 9 way connector pin numbers and controller comms terminals (i.e. HD, HE, HF.)In addition can you please confirm the following?1) You have a 458 Communcation module plugged in the controller?2) The module appears on the controller comms page?3) You have identical Communication parameters for both the 2604 controller and the PCI card (Baud Rate, Parity, Flow Control)4) You have the same Slave address in the NI Modbus vi as is set on the 2604?RegardsDimitris
-
Hello all
I am using the 3508 eurotherm controller and Serial comunication.
I want to send a program to the controller to then run it...
I can comunicate read and write parameters the problem is a scale in the setpoint, rate and dwell.
I found that the dwell decimal value as to be multipy by 60000 and that now works
The problem now is the setpoint/rate (that i found are the same, 10ºC is the same as 10ºC/min) temperature that does not make sence...
1º=3F800000h
10º=41200000h
100º=44C80000h
if you need more values i can post then but they are sence less unless someone know the equation.
Any help is apreciate thanks in advance
TimSorry if it looks like a double post but here is to be discussed the problem of the 3508 equations
the problem is just that...
There are no communications handbook for the 3000 series.
So i have to guess values and find out the strage equation
Thanks
Tim -
Bonjour,
J' aimerais acquérir la température de l' eurotherm 2704 avec une communication rs232 en utilisant des vi visa .
Sous MAX j' ai l' erreur 0xBFFF0072.*** la ressource est valide mais VISA ne peut pas actuellement y accéder**
Si quelqu'un a déjà utilisé l' eurotherm 2704 , je sollicite son aide.
Merci
Solved!
Go to Solution.The communications protocol that Eurotherm uses is modbus so all you need are modbus drivers. The model of the controller is essentially immaterial -- for this aspect at least. You can download modbus drivers from several places.
The other thing to remember is that the protocol is the same regardless of how you communicate with the controller. For example, some controllers have Ethernet interfaces, but use the same modbus protocol.
Mike...
Certified Professional Instructor
Certified LabVIEW Architect
LabVIEW Champion
"... after all, He's not a tame lion..."
Be thinking ahead and mark your dance card for NI Week 2015 now: TS 6139 - Object Oriented First Steps -
Helloall, I want to build a temperature control system using Eurotherm 2408 and Labview 2011. I have downloaded the respective Labview drivers from the following site
http://sine.ni.com/apps/utf8/niid_web_display.download_page?p_id_guid=E3B19B3E971F659CE034080020E748...
I know that by using OPC server i can communicate with Eurotherm 2408 from labview . My doubt is do i need to download any Modbus drivers to establish the communication. It would be of great help if some one provides me with some information on it.Thank youI can't look at the drivers you mention because the link is broken, but in general all the Eurotherm controllers I have seen did use Modbus as a communications protocol - as well as several others. You also need to verify what type of serial interface your unit has - they have several of those as well. If it has an RS232 port you are good to go and can (if you wish) use LV directly to communicate with the controller. If it has the RS485 interface, you will at the very least need an adapter, or perhaps a serial IO card for the PC.
The thing to remember is the 2408 is an intelligent device so your interactions with it will probably be short and very high-level -- like setting a setpoint or seeing what the current temperature is.
Mike...
Certified Professional Instructor
Certified LabVIEW Architect
LabVIEW Champion
"... after all, He's not a tame lion..."
Be thinking ahead and mark your dance card for NI Week 2015 now: TS 6139 - Object Oriented First Steps -
Hi Community,
I have a challenge getting 2 Oracle servers with each located in "internal" and "DMZ" network segments.
The oracle server on the internal network can communicate with the one on the DMZ but the one on the DMZ can NOT talk to the one on the internal network.
The customer wants the architecture to enable realtime data updates on the Oracle in DMZ.
My config is as follows: I need help.
ciscoasa# wr t
: Saved
ASA Version 8.4(3)
hostname ciscoasa
domain-name default.domain.invalid
enable password 8Ry2YjIyt7RRXU24 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
name 10.1.184.131 Proxy_Server
name 192.168.10.1 Internet_Router
name 10.1.184.122 Mail_Server
name 10.1.184.116 Mail_Server_2
name 10.1.184.121 Mail_Server_3
dns-guard
interface GigabitEthernet0/0
nameif Inside
security-level 100
ip address 10.1.184.1 255.255.248.0 standby 10.1.184.254
interface GigabitEthernet0/1
description LAN/STATE Failover Interface
interface GigabitEthernet0/2
nameif DMZ
security-level 50
ip address 192.168.30.1 255.255.255.0 standby 192.168.30.2
interface GigabitEthernet0/3
nameif Outside
security-level 0
ip address 192.168.10.2 255.255.255.0 standby 192.168.10.20
interface Management0/0
nameif management
security-level 100
ip address 192.168.1.1 255.255.255.0
management-only
boot system disk0:/asa843-k8.bin
ftp mode passive
clock timezone GMT 1
dns server-group DefaultDNS
domain-name default.domain.invalid
object network Proxy_Server
host 10.1.184.131
object network Mail_Server
host 10.1.184.122
object network Internet_Router
host 192.168.10.1
description Created during name migration
object network Mail_Server_2
host 10.1.184.116
description Created during name migration
object network Mail_Server_3
host 10.1.184.121
description Created during name migration
object network WebServer1
host 192.168.30.3
object network InternalNetwork
subnet 10.1.184.0 255.55.248.0
object network DMZ-IdentityPool
range 192.168.30.30 192.168.30.254
object network WebServer2
host 192.168.30.4
object network obj-remote
subnet 192.168.0.0 255.255.255.0
object network obj-DMZ
subnet 192.16.30.0 255.255.255.0
object network DatabaseServer
host 10.1.184.134
object network AppServer
host 10.1.184.126
object network MailServer
host 10.1.184.116
access-list Inside_access_in extended permit ip object Proxy_Server any
access-list Inside_access_in extended permit ip host 10.1.184.190 any
access-list Inside_access_in extended permit ip host 10.1.184.83 any
access-list Inside_access_in extended permit icmp host 10.1.184.190 any
access-list Inside_access_in extended permit ip host 10.1.184.67 any inactive
access-list Inside_access_in extended permit ip host 10.1.184.83 object Internet_Router
access-list Inside_access_in extended permit ip host 10.1.184.190 object Internet_Router
access-list Inside_access_in extended permit udp any any
access-list Inside_access_in extended permit icmp any any
access-list Inside_access_in extended permit ip object Mail_Server any
access-list Inside_access_in extended permit tcp object Mail_Server any eq smtp
access-list Inside_access_in extended permit ip object Mail_Server_2 any
access-list Inside_access_in extended permit tcp object Mail_Server_2 any eq smtp
access-list Inside_access_in extended deny tcp any any eq smtp
access-list Inside_access_in extended permit icmp host 10.1.184.43 any
access-list Inside_access_in extended permit ip object Mail_Server_3 any
access-list Inside_access_in extended permit tcp object Mail_Server_3 any eq smtp
access-list Inside_access_in extended permit ip host 10.1.184.190 host 192.168.30.3
access-list Inside_access_in extended permit tcp object InternalNetwork host 192.168.30.3 eq www
access-list Inside_access_in extended permit ip host 10.1.184.137 host 10.1.184.133
access-list Inside_access_in extended permit ip host 10.1.184.62 host 10.1.184.133
access-list Inside_access_in extended permit ip host 10.1.184.117 any
access-list Inside_access_in extended permit ip host 10.1.184.117 object Internet_Router
access-list Inside_access_in extended permit ip host 10.1.184.129 any
access-list Inside_access_in extended permit ip host 10.1.184.129 object Internet_Router
access-list Inside_access_in extended permit ip host 10.1.184.150 host 10.1.184.133
access-list Inside_access_in extended permit ip host 10.1.184.150 any
access-list Inside_access_in extended permit ip host 10.1.184.190 host 192.168.30.4
access-list Inside_access_in extended permit tcp object InternalNetwork host 192.168.30.4 eq www
access-list Inside_access_in extended permit tcp host 10.1.184.134 host 192.168.30.4 eq sqlnet
access-list Outside_access_in extended permit udp any eq domain object Proxy_Server
access-list Outside_access_in extended permit icmp object Internet_Router any
access-list Outside_access_in extended permit icmp any host 10.1.184.190
access-list Outside_access_in extended permit icmp any host 10.1.184.83 inactive
access-list Outside_access_in extended permit tcp any object Proxy_Server eq https
access-list Outside_access_in extended permit tcp any object Proxy_Server eq www
access-list Outside_access_in extended permit tcp any object Mail_Server eq smtp inactive
access-list Outside_access_in extended permit tcp any object Mail_Server_2 eq pop3
access-list Outside_access_in extended permit udp any eq domain object Mail_Server_2
access-list Outside_access_in extended permit tcp any object Mail_Server eq imap4 inactive
access-list Outside_access_in extended permit icmp any object Mail_Server inactive
access-list Outside_access_in extended permit tcp any object Mail_Server_2 eq smtp
access-list Outside_access_in extended permit tcp any object Mail_Server_2 eq imap4
access-list Outside_access_in extended permit icmp any object Mail_Server_2
access-list Outside_access_in extended permit icmp any host 10.1.184.43
access-list Outside_access_in extended permit tcp any host 192.168.30.3 eq www
access-list Outside_access_in extended permit tcp any host 192.168.30.3 eq https
access-list Outside_access_in extended permit icmp any host 192.168.30.3
access-list Outside_access_in extended permit icmp any any echo-reply
access-list Outside_access_in extended permit icmp any host 192.168.30.3 echo
access-list Outside_access_in extended permit tcp any host 192.168.30.4 eq www
access-list Outside_access_in extended permit tcp any host 192.168.30.4 eq https
access-list Outside_access_in extended permit icmp any host 192.168.30.4 echo
access-list Outside_access_in extended permit icmp any host 192.168.30.4
access-list branchgroup-SplitACL standard permit 10.0.0.0 255.0.0.0
access-list branchgroup-SplitACL standard permit 192.168.30.0 255.255.255.0
access-list DMZ_access_in extended permit tcp host 192.168.30.4 host 192.168.30.116 eq smtp
access-list DMZ_access_in extended permit icmp host 192.168.30.4 any
access-list DMZ_access_in extended permit ip host 192.168.30.4 host 192.168.30.134
access-list DMZ_access_in extended permit tcp host 192.168.30.4 host 192.168.30.134 eq sqlnet
pager lines 24
logging enable
logging timestamp
logging standby
logging emblem
logging list InformationalLog level informational
logging list InformationalLog message 101001
logging buffer-size 16384
logging console notifications
logging monitor errors
logging buffered critical
logging trap errors
logging asdm critical
logging mail informational
logging host Inside 10.1.184.132
logging host Inside 10.1.184.190 6/1470
logging debug-trace
logging ftp-server 10.1.184.190 \\marinasec\akanoa akanoa *****
logging permit-hostdown
logging class auth buffered emergencies trap emergencies
logging class bridge buffered emergencies trap emergencies
logging class config buffered alerts trap emergencies
logging class ip buffered emergencies trap alerts
logging class sys trap alerts
logging class ca trap emergencies
logging class email buffered emergencies trap errors
mtu Inside 1500
mtu DMZ 1500
mtu Outside 1500
mtu management 1500
ip local pool remoteusers 192.168.0.1-192.168.0.254
failover
failover lan unit secondary
failover lan interface stateful_failover GigabitEthernet0/1
failover replication http
failover link stateful_failover GigabitEthernet0/1
failover interface ip stateful_failover 192.168.20.1 255.255.255.252 standby 192.168.20.2
no monitor-interface management
icmp unreachable rate-limit 1 burst-size 1
icmp permit any Inside
asdm image disk0:/asdm-647.bin
no asdm history enable
arp timeout 14400
nat (DMZ,Outside) source static obj-DMZ obj-DMZ destination static obj-remote obj-remote
nat (Inside,Outside) source static InternalNetwork InternalNetwork destination static obj-remote obj-remote
object network Mail_Server
nat (Inside,Outside) static Mail_Server no-proxy-arp route-lookup
object network WebServer1
nat (DMZ,Outside) static 192.168.30.3 dns
object network WebServer2
nat (DMZ,Outside) static 192.168.30.4 dns
object network DatabaseServer
nat (Inside,DMZ) static 192.168.30.134
object network AppServer
nat (Inside,DMZ) static 192.168.30.126
object network MailServer
nat (Inside,DMZ) static 192.168.30.116
access-group Inside_access_in in interface Inside
access-group DMZ_access_in in interface DMZ
access-group Outside_access_in in interface Outside
route Outside 0.0.0.0 0.0.0.0 Internet_Router 1
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
aaa-server vpn protocol radius
aaa-server vpn (Inside) host 10.1.184.119
key *****
aaa-server vpn (Inside) host 10.1.184.120
key *****
user-identity default-domain LOCAL
http server enable
http 10.1.184.190 255.255.255.255 Inside
http 10.1.184.2 255.255.255.255 Inside
http 10.1.184.83 255.255.255.255 Inside
http 192.168.1.0 255.255.255.0 management
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec ikev1 transform-set rmtset esp-3des esp-md5-hmac
crypto dynamic-map dyn1 1 set ikev1 transform-set rmtset
crypto dynamic-map dyn1 1 set reverse-route
crypto map mymap 1 ipsec-isakmp dynamic dyn1
crypto map mymap interface Outside
crypto ikev1 enable Outside
crypto ikev1 policy 1
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 43200
telnet 10.1.184.83 255.255.255.255 Inside
telnet 10.1.184.190 255.255.255.255 Inside
telnet 10.1.184.167 255.255.255.255 Inside
telnet timeout 5
ssh 10.1.184.83 255.255.255.255 Inside
ssh 10.1.184.190 255.255.255.255 Inside
ssh 10.1.184.43 255.255.255.255 Inside
ssh timeout 5
console timeout 0
threat-detection basic-threat
threat-detection statistics
threat-detection statistics tcp-intercept rate-interval 30 burst-rate 400 average-rate 200
webvpn
group-policy branchgroup internal
group-policy branchgroup attributes
dns-server value 10.1.184.120
split-tunnel-policy tunnelspecified
split-tunnel-network-list value branchgroup-SplitACL
default-domain value marinasecuritieslimited.com
username sannib password 3gB/xWLMBVp/AjjW encrypted
username adebimpel password O./lZ/3rlYD/87u2 encrypted
username ojoawob password w1h9Aq2Welzv1fuW encrypted
username agbajer password NuDaZPLHC0BcF7iI encrypted
username oyenihib password eoxptVEUfczen6VR encrypted
username odewolef password yB12L9t1gcr.Wgx/ encrypted
username mainuser password 8KBTvbq5FOuoFce2 encrypted privilege 15
username maakano password c1Cb3uSluyfsyWUb encrypted
tunnel-group branchgroup type remote-access
tunnel-group branchgroup general-attributes
address-pool remoteusers
default-group-policy branchgroup
tunnel-group branchgroup ipsec-attributes
ikev1 pre-shared-key *****
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns migrated_dns_map_1
parameters
message-length maximum client auto
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns migrated_dns_map_1
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
class class-default
user-statistics accounting
service-policy global_policy global
prompt hostname context
no call-home reporting anonymous
call-home
profile CiscoTAC-1
no active
destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
destination address email [email protected]
destination transport-method http
subscribe-to-alert-group diagnostic
subscribe-to-alert-group environment
subscribe-to-alert-group inventory periodic monthly
subscribe-to-alert-group configuration periodic monthly
subscribe-to-alert-group telemetry periodic daily
hpm topN enable
Cryptochecksum:bbe838eb9af33fc84083989823bc0c22
: end
[OK]
ciscoasa#Hi,
Seems to me that you have configured Static NAT from "inside" to "dmz" so that the "inside" servers are visible to the "dmz" with the IP address belonging to the "dmz"
Is this something that you absolutely need? Is there something preventing you from using the IP address ranges on both "inside" and "dmz" and not doing NAT for them at all between those interfaces?
IF you want to keep the current setup intact regarding NAT, change the DMZ ACL to use the actual 10.1.184.x IP addresses as the destination IP address in the ACL.
In other words, always use the Real IP address of the host in the ACL configuration, NOT the NAT IP address. After doing that change I suppose it should also work for "dmz" to "inside". (NAT IP was used in the ACL in the ASA versions 8.2 and below, the Real IP address is used in software 8.3 and above)
Change
access-list DMZ_access_in extended permit tcp host 192.168.30.4 host 192.168.30.116 eq smtp
access-list DMZ_access_in extended permit icmp host 192.168.30.4 any
access-list DMZ_access_in extended permit ip host 192.168.30.4 host 192.168.30.134
access-list DMZ_access_in extended permit tcp host 192.168.30.4 host 192.168.30.134 eq sqlnet
To
access-list DMZ_access_in extended permit tcp host 192.168.30.4 host 10.1.184.116 eq smtp
access-list DMZ_access_in extended permit icmp host 192.168.30.4 any
access-list DMZ_access_in extended permit ip host 192.168.30.4 host 10.1.184.134
access-list DMZ_access_in extended permit tcp host 192.168.30.4 host 10.1.184.134 eq sqlnet
You can also use the "object" names in the ACL.
Which would be
access-list DMZ_access_in extended permit tcp host 192.168.30.4 object MailServer eq smtp
access-list DMZ_access_in extended permit icmp host 192.168.30.4 any
access-list DMZ_access_in extended permit ip host 192.168.30.4 object DatabaseServer
access-list DMZ_access_in extended permit tcp host 192.168.30.4 object DatabaseServer eq sqlnet
Hope the above helps Please ask more if needed.
- Jouni -
Open and close communication channel in one link
Hello,
I implement with successful the scenario that described in this blog:
Control Communication Channels Externally without using RWB
Right now I use with this link to start the CC
http://aaaa:50000/AdapterFramework/ChannelAdminServlet?party=*&service=Open_Friday_Service_Sender&channel=Open_Friday_Sender&action=start
And with this link to stop the CC
http://aaaa:50000/AdapterFramework/ChannelAdminServlet?party=*&service=Open_Friday_Service_Sender&channel=Open_Friday_Sender&action=stop
I looking for the way to start and stop the communication channel in one link.
Eladhi elan
i think you need to write an abap program and schedule it..
abap program will call this HTTP link as The URL has no dependency on where it is called.
regards
kummari -
Communication between multiple JVMs
We have a Java toolkit that is shipped as a JAR file. The toolkit is ported from a C++ DLL running on Windows. Therefore, in both instances (Java and C++), we can't control who loads us or when.
I need to communicate between different JVMs running on the same machine. The communication is very simple: "Is this user logged on in your JVM?" I send a string to the other JVM and I get back a boolean. I don't need to worry about crossing machine boundaries. Also, I'm not expecting to have a huge number of JVMs running. Maybe 3 or 4 could be likely. However, the solution does need to scale in case there are more than that. I'm not setting a limit on the number of JVMs either.
The C++ code handled this situation very easily and elegantly. It created a named system semaphore (mutex) whenever a user logged on. The name of the mutex was the username. So, if there were multiple instances of the DLL running in separate processes (EXEs), we could easily tell if this user was logged on in another instance. We'd try to create the system semaphore - it would fail saying the name already exists. Therefore, we'd know the user was already logged on. The named system semaphore provided the means for a machine-global list - which is exactly what we wanted. It also had this extra benefit: if the process terminates normally or abnormally, the system semaphore is removed from memory. This means: the application is terminated, the user is no longer logged on, and we can relog this user on.
Therefore, I have 2 requirements:
1) A machine-global list where we can place a string. Keep in mind, it doesn't absolutely have to be a machine-global list. A suitable means to talk to other JVMs is acceptable too.
2) If the process exits normally or abnormally, the string(s) get removed (for this JVM) from the list. Abnormal termination is the more important one to focus on because lots of people of varying skill levels use our toolkit. Abnormal terminations can be common.
The first thought is to store these in a file. That solves #1, but not #2. I've seen the JIPC package. However, I'm not too crazy about requiring 3rd party developers to start up another program (JIPC) before they start up their application. As I said, we're just a toolkit so we can't control when or who loads us. It's not totally out of the question, but I'd prefer something else.
I have a fairly involved solution that involves sockets. The first JVM creates a ServerSocket on a specific port and becomes the server. Subsequent JVMs also try to create the ServerSocket on the same port. They get a BindException because the ServerSocket already exists, so they know they're clients. Then, they create a client socket and talk to the server that way. This gets a little hairy when the server goes away. The clients will scramble to become the server and then all the other clients need to reconnect to the new server.
This proposed solution sounds like it will address both requirements. However, I'm looking for something simpler. I'm asking this forum for help in case there's an easier way to do this. I don't have the breadth of experience with Java yet to know if there's a simpler way to fix this. If I have to go with the socket solution, I will. I just didn't want to overlook something simple that is already built into Java.
Thanks for any tips or suggestionsThanks for the response.
FileLock. We still have to target JDK 1.3 so we can't use FileLocks (at this point)
JNI: That's an interesting idea. I suspect many people are using our software on Windows. Therefore, we could probably fix it in Windows the same as in the C++ code. If they're not on Windows, we could use the Sockets approach.
I also had another idea: how about hashing the username string into some integer (or long) value. Then use the hashed value to lock some other resource: like the port number passed to ServerSocket. I know ServerSocket only accepts 0 - 0xFFFF so this obviously won't work. But is there some other system-wide thing we could lock given an integral value?
Maybe you are looking for
-
Should I upgrade or buy new?
I currently use a G4 running OS 9.0 (400MHz, 128 MB, 20GB) for QuarkXPress and Photoshop/Illustrator. I also have access to my partner's Windows machine which I use for web browsing, email etc. I would like to be able to update/upgrade so I only have
-
Codedui: Unable To Identify Objects Inside The Virtual Machine
Hi We are unable to identify objects inside the virtual machine. We want to perform some tasks inside the virtual machine. The virtual machine object is getting identified as image. So when we perform tasks like creating a folder or opening any appli
-
I was notified that several important updates were available for my CS 6 applications. I have attempted to install these updates 4 times now. The error messages are as follows: Extension Manager 6.0.8 Update There was an error downloading this updat
-
Hallo ! ich habe folgendes Problem. Wenn ich in der BRIDGE der "Creative Suite 6" Bilder markiere und dann auf AUSGABE gehe, kann ich ein PDF erstellen. PDF wird normal erstellt. Beim Druck auf meinem EPSON 7900 bekomme ich aber die Fehlermeldung Da
-
My photo stream does not seem to be working as before with the new PHOTOS update. Some of my devices are not getting the uploads/downloads, anyone have this problem?