sorry - missed that VI. Uploaded a new zip file with it included.

I am not aware of the differences with the CP 243 ethernet module vs the 343 (which this code was used with) - I could not say if it would work or not. If it does not work, you might be able to find some information through http://libnodave.sourceforge.net/ (an open source S7 PLC data exchange code) helpinig find where the LabVIEW code needs to be changed for 200 series communication.

The program uses the port 102 for communication. If you are getting error 66 " The network connection was closed by the peer." - then you might want to double check that you are not trying to write to read-only registers. But I have used this program almost exclusively for reading registers - there could be a bug with some writes. The register read speed should scale linearly with the number of registers desired to read - should be same with OPC - but I have not benchmarked it. My guess is that it would be faster than OPC having the direct call to registers. There are ways to optimize reading large chunks of DB blocks - if you need this, let me know.

I added a newer version of the VI's that I have used. I do not have a S7 to test the code with anymore, so if there are bugs and you find a fix, please post them back on this site. The new version (3.1) does have a "optimization" routine that will group reads from the same DB block in a single TCP read. If most of your data is from a single DB, it will be significanly faster. The optimization will not work if you are reading to locations other than DB blocks.

MarcoPolo5

Thanks again for sharing your code, certainly do apriciate it.

I had a chance to test the S7 communication (EM243-1) yesterday. The TCP/IP vi's connect on port 102 without any problems, but the hex chars :

"TPKT" and "Connect to Adapter" send from the VI "S7_Init_Adapter_TCP.vi" fail to awaken the module since I get a TCP read timeout when trying to read the expected 22 char return answer.

Siemens wants aprox $4000 for the MPI protocol, so I realy wanted to see if I could get away with not investing this amount.

To test that the S7-system was functional, I configured the NI OPC Server with the S7 driver (2 hours trial mode duration). This worked fine and I was able to configure tags for certain addresses from the S7 and directly port them to Shared Variables.

I am trying to implement a GUI for the S7 on a WinCE 5.0 touch panel from IVCDisplays.com running LabVIEW PDA. On this platform I can't operate the NI OPC Server, however, raw TCP/IP calls work just fine so this would be a good entry point to making nice-looking GUI's for S7 installations.

The NI-OPC server was configured with a TSAP 1001, I dont have any idea of what than means, but a S7 guy told me that was needed.

Does anyone out there have a bit more information on the MPI protocol from Siemens ?

Greetings from Copenhagen Denmark.

/søren

Hi,

I'm from National Instruments Brazil, and a customer just downloaded this code, but he is looking for a code that can communicate with multiple PLCs. Does anyone have a code that can do this?

Thanks.

Regards

There is an excellent S7 packet dissector for wireshark at:http://sps-forum.de/showthread.php?t=28292

Registration is required for access to the files.  I do not speak German, but I was able to register by reading the German text via a google translate window.

Go to the end of the posting (now on page two) and get the latest version of s7comm_dll_090712.zip.  The source is also available.  A look at the source can reveal the possible values of many of the fields.

Problems writing with the example code may be related to the read length field.  When writing, the read length field must contain a write length parameter based on the number of data units (bytes, words, dwords), not bytes.

I am working on this using a S7 318-2DP + CP 343-1 and a bridge device.  When this device opens its connection there are two frame exchanges that the example does not have.  The first is labeled as a TPKT Connection request.  The PLC answers this with a connection confirm.  The second exchange is a ISO/S7 Comm exchange that wireshark identifies as S7 PDU negotiation.

TS9 - "S7Com_2009_11_06.zip" was forwarded by a fellow developer. See the file in the download section above. The code is a little different from the original code, but read and write should both work.

I could find the solution on not writing in DB of PLC. There is a very small mistake in the code; the packet size for both write and read request remains same, where as it is different for both.

You need to alter a vi "S7_Read_Write_Data_TCP.vi" to solve this issue.

Fourth byte (index 3) of the packet "S7 Ethernet Data" should be replaced by the size of the total packet. This packet is generated by "S7_Build_Message.VI" connected to "TCP Write" vi.

I tried with the new zip, unfortunately it didn't work.

I have uploaded the API lib zip.

Please check the vi "S7_Read_Write_Data_TCP.vi" I have modified.

Using this API lib, I could read/write 100 bytes of single DB.

I have not tested rest of the VIs (read_write_cluster_array, etc.). Might require to alter accordingly.

I have tested this code on PC as well as cRIO.