Allow list
In case you are using your own private network, it might be necessary to add IPs ports and protocols to the allow list. Please find the information on how to do it bellow.
The SAM4 hardware collects current and voltage data from sensors installed in the motor
control cabinet. These analog inputs are sent to the DAQ, which transforms them into a
digital output. This digital output is then sent to a switch via an UTP/S/FTP cable. The
switch bundles the digital output of multiple DAQs and forwards these outputs to the
gateway, which in turn transmits the DAQ’s outputs to Samotics’ cloud environment.
The communication between the gateway and the DAQs is designed as a separate sensor
network. For this, the gateway’s ethernet port 1 functions as a DHCP server with a default
IP 192.168.1.1, and hands out IPs in the 192.168.1.[3-254] range to the DAQs. In turn, the
DAQs are coded to transmit their digital output to IP 192.168.1.1, or to another customised IP
as to avoid network conflicts.
Note that the gateway’s ethernet interface used in the SAM4 sensor network is entirely
separated from the interfaces used to set up an internet connection. The switch and DAQs
will not be able to communicate with any other devices in your network. You should not
see MAC addresses or IPs for these devices in your network.
SAM4 requires a bandwidth of 1 Mbit/s per motor. The upload speed should exceed 0.1
Mbit/s per motor with a minimum of 0.5 Mbit/s per gateway. The download speed should
be at least 1 Mbit/s per gateway. SAM4 will use approximately 4GB of data per motor on a
monthly basis, depending on the running time of the motor. The main source of data is a
15-second condition measurement taken each hour the motor is active. This is the
standard configuration for SAM4, but these settings can be adjusted based on the asset’s
context. Additionally, metrics for insights and device management are included (e.g.,
application updates).
SAM4 requires access to a number of URLs, IPs, protocols and ports for its cloud
communication, which will need to be added to the allow listed on any existing firewalls. This table
shows the required allow lists per topic.
All cloud communication, including software updates, is initiated by the gateway. Samotics
will never initiate an inbound connection to your network. SAM4’s cloud communication is
secured via TLS 1.2 and HTTPS protocols. Remote administration of the gateways is
secured via SSH and it is the gateway itself that initiates the connection using default
secure outgoing ports (443 (HTTPS), 53(DNS), 123(NTP), so your IT department doesn’t
have to worry about special rules for the firewall.
You will be able to access Samotics' network tool by connecting a laptop to the sensor
network via ethernet cable. From the SAM4 Setup tool main menu, you will be able to see all
of the sensors currently connected to the gateway, as well as any networking issues
occurring at that time. For every network interface, the tool allows you to perform
some basic actions: you will be able to optimise the 4G connection through a live feed of
signal strength in the Mobile menu, while the Ethernet and Wi-Fi menus will allow you to
set static IPs as well as find nearby Wi-Fi signals.
The SAM4 setup tool comes with an advanced mode allowing for additional setup, such as
APN, DNS, NTP, sensor network, and proxy configuration. In addition, it will also allow you
to upgrade all software installed on your gateway as well as its BIOS.
Changelog
-