Raw Modbus TCP Data

DLMUK

Member
D
Join Date
Jun 2013
Location
Southampton
Posts
311
Hi,

I have a Siemens PLC which is connected to a Siemens RMC30, they were functioning fine communicating via Modbus TCP/IP but have now stopped.

Both devices are showing as OK and that a connection is established but no comms.

Is there a method to see the raw TCP data coming out of the S7-300?

Thanks,
 
DLMUK said:
Hi,

I have a Siemens PLC which is connected to a Siemens RMC30, they were functioning fine communicating via Modbus TCP/IP but have now stopped.

Both devices are showing as OK and that a connection is established but no comms.

Is there a method to see the raw TCP data coming out of the S7-300?

Thanks,
Click to expand...

Wireshark is the tool I typically use when I want to look at Ethernet traffic. It is an open source software (free) package that captures ethernet traffic from one of your computers ports, and then displays the data. It has a number of protocol dissectors built in, so that you can understand the data. It includes HTTP, TCP, Profinet, just about everything I've ever thought of to check.

https://www.wireshark.org/

Part of the trick, though, is to GET the packets to which you want to listen to your PC. A normal switch will only send the packets where they need to go (from PLC to destination), and not anywhere else (your computer with wireshark). There are a few options available.


  1. Temporarily use an Ethernet Hub instead, which makes every device see all the traffic. Basically, it makes it as if you had one ethernet cable with many ends plugged into all the devices, instead of the standard 2 ended cable. Downside here is that the combined traffic between all the devices is limited to 100mbaud, whereas switches allows EACH device to do 100mbaud.
  2. If you have a managed switch with port mirroring, yo ucan use that function to assign one port to monitor another. Basically, the switch forwards any packets heading to port A to both port A & B.
  3. You can buy a passive ethernet tap, which is basically a 2 port device that reads the ethernet traffic going across it, and then forwards it to your computer, often over USB. Stick this between which ever devices you want to listen to.
  4. My PC has two different Ethernet interfaces, which means I can bridge them in windows, and then use it essentially the same as an Ethernet Tap.
 
mk42 said:
Wireshark is the tool I typically use when I want to look at Ethernet traffic. It is an open source software (free) package that captures ethernet traffic from one of your computers ports, and then displays the data. It has a number of protocol dissectors built in, so that you can understand the data. It includes HTTP, TCP, Profinet, just about everything I've ever thought of to check.

https://www.wireshark.org/

Part of the trick, though, is to GET the packets to which you want to listen to your PC. A normal switch will only send the packets where they need to go (from PLC to destination), and not anywhere else (your computer with wireshark). There are a few options available.

  1. Temporarily use an Ethernet Hub instead, which makes every device see all the traffic. Basically, it makes it as if you had one ethernet cable with many ends plugged into all the devices, instead of the standard 2 ended cable. Downside here is that the combined traffic between all the devices is limited to 100mbaud, whereas switches allows EACH device to do 100mbaud.
  2. If you have a managed switch with port mirroring, yo ucan use that function to assign one port to monitor another. Basically, the switch forwards any packets heading to port A to both port A & B.
  3. You can buy a passive ethernet tap, which is basically a 2 port device that reads the ethernet traffic going across it, and then forwards it to your computer, often over USB. Stick this between which ever devices you want to listen to.
  4. My PC has two different Ethernet interfaces, which means I can bridge them in windows, and then use it essentially the same as an Ethernet Tap.
Click to expand...

Thanks - I have downloaded Wireshark and starting to figure out how it works!

In order to get around the packet/IP issue, I assume I could just re-program the PLC to request a transaction with my PCs IP temporarily to check that it is polling?

Thanks
 
DLMUK said:
Thanks - I have downloaded Wireshark and starting to figure out how it works!

In order to get around the packet/IP issue, I assume I could just re-program the PLC to request a transaction with my PCs IP temporarily to check that it is polling?

Thanks
Click to expand...

Has the serial server not got diagnostics on it ?
 
tragically1969 said:
Has the serial server not got diagnostics on it ?
Click to expand...

It does, it is showing no packets being received. I can start an SSH session with putty and view the raw traffic and there is nothing. This is why I wanted to confirm if there is anything coming out of the PLC as the serial server suggests there isn't.
 

Similar Topics

A
WinCC C-script Raw data operation.
Hello. I have a db which is 1000 INT, and this db is represented in WinCC as a raw data type set of 5x 400 Bytes. This set is read with a script...
Replies
1
Views
48
AdamF
A
S
5094-OF8 Raw Count?
What is the raw count of Allen Bradley Flex Analog Output Module 5094-OF8 raw count?
Replies
1
Views
130
JLand
J
T
Draw/plot a Line in Emerson Quick Panel HMI
Hello, I want to plot a line on X,Y axis with defined start and end points on Quick Panel+. I use PAC Machine Edition 9.7, and it supports...
Replies
14
Views
1,737
Tadwaco
T
T
Draw/plot a Line in Emerson Quick Panel HMI
Hello, I want to plot a line on X,Y axis with defined start and end points on Quick Panel+. I use PAC Machine Edition 9.7, and it supports...
Replies
0
Views
349
Tadwaco
T
M
Conver absolute encoder raw values to modulo 360
Hello. An absolute encoder on a rotary axis gives values in range -2147483648 to 2147483648. When value is > 2147483648 , the encoder value is...
2
Replies
20
Views
2,311
martinplc
M
Back
Top Bottom