The S7-1500 talks Modbus TCP straight out of its PROFINET port. No CP module, no license, no third-party library. You drop in two instructions — MB_CLIENT and MB_SERVER — point them at a connection structure, and you have a working Modbus link. That said, the part that trips people up isn’t dropping the block in. It’s the connection… Read More »
Every EtherNet/IP device has an IP address. Every device has a subnet mask and a gateway. Every device decides whether to get its address from DHCP, BOOTP, or static configuration. Every device that participates in multicast I/O has a multicast address range. All of this lives in one CIP object — the TCP/IP Interface Object, Class 0xF5. When… Read More »
Most people land here for one thing: the pin numbers. That table is right below, so grab it and go if that’s all you need. The rest of the page is for when the table isn’t enough — when a link won’t talk, a device throws garbage, or you’re wiring two pieces of gear that were never meant… Read More »
The North American power grid is the largest interconnected machine on the planet. A cyberattack that disrupts it does not just affect one company — it affects millions of people who depend on electricity for hospitals, water treatment, communications, and daily life. NERC CIP exists to prevent that. It is a set of mandatory cybersecurity standards that every… Read More »
Every CIP I/O connection has a transport class — a single nibble in the Forward_Open Transport Class Trigger byte that decides how the connection behaves. Class 0, Class 1, Class 2, Class 3 — engineers see these terms in Studio 5000, in Wireshark captures, in product documentation — but rarely with a clear explanation of what each one… Read More »
Every CIP device has one. Every browse of an EtherNet/IP network reads from it. Every Forward_Open validates against it. Every “what is this device” query touches it. The Identity Object (Class 0x01) is the most-accessed object on every CIP device — yet most articles barely cover it. This article fixes that. If you have ever wondered where Studio… Read More »
Open Studio 5000, browse the network, find a third-party EtherNet/IP device, and click “Add Module.” If the device’s EDS file is registered, the configuration tool already knows the device’s Vendor ID, Product Code, supported connections, assembly sizes, and parameter ranges. If the EDS isn’t registered, you get a generic device entry with very little to work with. EDS… Read More »
When a ControlLogix PLC reads inputs from a 1734-AENT Point I/O block, it does not read each input one by one. It reads one big block of bytes that contains every input in a defined order. That block is an Assembly Object instance. The Assembly Object is the mechanism CIP uses to bundle scattered data — input bits,… Read More »
Every CIP I/O connection in the world starts with one service: Forward_Open. The PLC sends it to a remote drop, the drop validates it, and if everything checks out, the cyclic exchange begins. If something does not check out, the Forward_Open returns an error and the connection never opens — the device is invisible to the PLC until… Read More »
When you read an attribute from a CIP device, the bytes you get back have a type. When you write a value, you must encode it in the right type or the device returns an error. This page is the complete reference for every CIP data type defined by ODVA’s CIP Networks Library Volume 1, Appendix C. CIP’s… Read More »