TimWilborne Posted March 16, 2006 Report Posted March 16, 2006 I didn't want to get on a tangent question on another post I was just reading so... What is the advantage of a Virtual Private Network over having your Plant and Office network separate besides cost? You see people having trouble with this all the time. So what are they gaining by doing it? Quote
Wordman Posted March 16, 2006 Report Posted March 16, 2006 I'm also interested in the reason, as we are in a current battle with IT over this issue. Quote
Ken Roach Posted March 16, 2006 Report Posted March 16, 2006 I'm not sure I understand your question, TW. Most applications I've seen for Virtual Private Networks are for a secure link across the Internet into a dedicated process network. Whether or not that process network is linked to the main business network is of secondary importance. I have never seen a VPN used internally to separate process from business LAN's. I've seen VLAN's used for that purpose (a different topic entirely) but not VPN's. In my view these issues are not really a product or technology issue but rather a glimpse of the IT/IS and networking worlds from the controls side. Quote
Contr_Conn Posted March 16, 2006 Report Posted March 16, 2006 I think Ken pointed you to the right direction: VPN normally used: - to connect 2 business networks via secure Internet link - allow remote users to access business network from rmote location via Internet. VPN creates secure tunnel over the internet that allow encrypted businnes data safely travel over Internet to the business network. Example: Customer connects company laptop to a home DSL network and using VPN client connects to the company business network VPN server so he can have same network resources as sitting one the real network. Quote
Wordman Posted March 16, 2006 Report Posted March 16, 2006 From what I inferred, I think he meant VLAN. Maybe I shouldn't speak for him, but I did. Quote
TimWilborne Posted March 16, 2006 Author Report Posted March 16, 2006 Ok, I'm probably using the wrong terminology or don't understand what some are trying to do in their post, but it seems some are wanting to use the same physical wire for their plant and office network Is this correct? Whats the term for it? Why? Quote
Contr_Conn Posted March 16, 2006 Report Posted March 16, 2006 You probably talking about VLAN (Virtual LAN). It is more like sharing same switch between 2 networks, not a wire. I guess some switches/routers will let you share wire as well over VLAN see ENET-AP001 page 2-3 http://literature.rockwellautomation.com/i...ap001_-en-p.pdf Quote
TimWilborne Posted March 17, 2006 Author Report Posted March 17, 2006 So I am getting that the only real advantage is the cost of not having to run the separate network. Is this correct? Quote
TimWilborne Posted March 17, 2006 Author Report Posted March 17, 2006 After thinking about it a little more, I might see a few advantages for doing this on an I/O network. But I still can't understand why you would mix the Plant and Office Networks this way. Quote
darrenj Posted March 20, 2006 Report Posted March 20, 2006 I do agree with you...however...:) One of the last jobs i did they had a a machine conneceted to the network for remote troubleshooting (It was made in italy and they wanted to be able to download/troubleshoot from there..) The set up was a compact logix with HMI using Ethernet and it had a router built in to the cabinet..IT just plugged in a cable to the LAN from the existing router and gave me the IP addy's to use..after i programmed it i wandered around the plant and set up in an office on the second floor..Plugged my lap top in started RSlinx and There was the PLC..Its kinda cool knowing that no matter where i was in the plant i could connect but a little scary to know someone can take control and program without seeing the machine.. I guess i can see the pros and cons..but i think there are more cons than pros... Quote
Nathan Posted March 26, 2006 Report Posted March 26, 2006 Did you get your question resolved? Were you referring to VLANs or VPNs? Basically, VLANs are TCP layer 2 options that makes your switch "feel" like they're separate isolated switches. VPNs are secure communication sessions between a host or a network and a foreign network over a shared network (IE computer connected to corporate network over the Internet). ---- Nathan Boeger Integrator, Microsoft Certified Systems Engineer Inductive Automation "Specializing in SQL and web based HMI systems" Quote
TimWilborne Posted March 26, 2006 Author Report Posted March 26, 2006 Yes, I incorrectly used the term Virtual Private Network for a Virtual LAN. I understand the difference now. Thanks for everyones help Quote
Lindaawilsoon Posted March 24, 2020 Report Posted March 24, 2020 On 3/16/2006 at 9:10 PM, Wordman said: I'm also interested in the reason, as we are in a current battle with IT over this issue. The reason is simple, VPN is a service that protects you from internet threats/viruses and also to unblock BBC Iplayer and other Geo-restricted services. Quote
markophillips Posted August 15, 2020 Report Posted August 15, 2020 (edited) On 3/24/2020 at 6:37 PM, Lindaawilsoon said: The reason is simple, VPN is a service that protects you from internet threats/viruses and also to unblock BBC Iplayer and other Geo-restricted services. I agree with you, but know 100 percent, VPN can help you bypass Geo-restricted content, but it will not help you remove viruses; for that, you have to download the Antivirus program. However, I am using ExpressVPN to bypass Geo-restricted, and I am very satisfied with its services and speed, I highly recommend ExpressVPN. Edited August 15, 2020 by markophillips Quote
BobLfoot Posted August 16, 2020 Report Posted August 16, 2020 Since this thread just was "resurrected" I want to post a link to a very good article that explains the model that IT has used for years in designing Plant Networks and Business Networks. It also talks about how the IIOT push and edge computing are affecting the historical model. https://www.automationworld.com/factory/iiot/article/21132891/is-the-purdue-model-still-relevant Quote
ulrichneilson Posted September 19, 2020 Report Posted September 19, 2020 (edited) On 3/16/2006 at 4:09 PM, TimWilborne said: I didn't want to get on a tangent question on another post I was just reading so... What is the advantage of a Virtual Private Network over having your Plant and Office network separate besides cost? You see people having trouble with this all the time. So what are they gaining by doing it? I am also interested in the cause, because we are currently in a battle with IT on this issue. Edited September 19, 2020 by ulrichneilson Quote
BobLfoot Posted January 6, 2021 Report Posted January 6, 2021 BEWARE : This posts generalizes a lot, but the point is valid. The push these days from IT and Accounting is SECURITY, SECURITY, SECURITY. And in case you missed my point IT is worried about SECURITY. OT or Process Control Folks on the other hand are most concerned about PROCESS UPTIME and PROCESS ACCESSIBILITY. "If it ain't running we wain't making money no matter how secure it is" The struggle and sometimes unfortunately war is to find the happy medium between these two.forces. Keep it secure so the evil actors are kept out, but keep is open so the good guys can keep it running. If you question the committment of the bad guys just google SOLARWINDS HACK. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.