格林
我听到了花开的声音,也看到了花落的结局.
级别: 工控侠客
精华主题: 0
发帖数量: 110 个
工控威望: 3361 点
下载积分: 1537 分
在线时间: 32(小时)
注册时间: 2011-06-08
最后登录: 2024-11-23
查看格林的 主题 / 回贴
楼主  发表于: 23天前
只看楼主 |
单位上有一台西门子S7-200SMART装了一个4G远程模块,我在485总线上捕获了一段数据流,看格式应该是PPI协议,远程主站向PLC发起命令,然后PLC应答。
由于本人对PPI通信协议不够了解,请高手帮忙解析一下具体的报文内容是什么,万分感谢。


命令:68 33 33 68 02 00 6C 32 01 00 00 00 00 00 26 00 00 04 03 12 0A 10 02 00 03 00 00 81 00 00 00 12 0A 10 02 00 02 00 00 82 00 00 00 12 0A 10 02 00 C8 00 01 84 00 00 00 AD 16
应答:E5
命令:10 02 00 5C 5E 16
应答:68 EB EB 68 00 02 08 32 03 00 00 00 00 00 02 00 DA 00 00 04 03 FF 04 00 18 63 91 01 00 FF 04 00 10 2D 00 FF 04 06 40 A9 00 00 08 41 00 63 91 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3E E5 1D 82 43 78 44 B4 3F CC CC CD 43 DC 00 00 43 7A 00 00 00 00 00 00 00 00 00 00 3C 23 D7 0A 40 40 00 00 00 00 00 00 00 00 00 00 3E E6 66 66 42 A4 9B A7 00 00 00 00 00 00 00 00 41 10 00 00 3C 23 D7 0A 00 00 00 00 43 AF 00 00 43 BE 00 00 43 48 00 00 43 16 00 00 3F 33 33 33 3F 0C CC CD 3E DC 28 F6 CA 16

命令:68 1B 1B 68 02 00 6C 32 01 00 00 00 00 00 0E 00 00 04 01 12 0A 10 02 00 2C 00 01 84 00 06 E0 79 16
应答:E5
命令:10 02 00 5C 5E 16
应答:68 41 41 68 00 02 08 32 03 00 00 00 00 00 02 00 30 00 00 04 01 FF 04 01 60 3F 0C C7 DF BF 05 5F 8A 00 78 00 00 00 05 00 00 00 05 00 00 01 2C 00 00 01 2C 00 00 43 5F 62 38 00 00 00 00 42 B1 AA 4E 42 85 C1 5C 5F 16

命令:68 33 33 68 02 00 6C 32 01 00 00 00 00 00 26 00 00 04 03 12 0A 10 02 00 03 00 00 81 00 00 00 12 0A 10 02 00 02 00 00 82 00 00 00 12 0A 10 02 00 C8 00 01 84 00 00 00 AD 16
应答:E5 (收到)
命令:10 02 00 5C 5E 16 (请立即执行)
应答:68 EB EB 68 00 02 08 32 03 00 00 00 00 00 02 00 DA 00 00 04 03 FF 04 00 18 63 91 01 00 FF 04 00 10 2D 00 FF 04 06 40 A9 00 00 08 41 00 63 91 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3E E8 56 68 43 7C EC 65 3F CC CC CD 43 DC 00 00 43 7A 00 00 00 00 00 00 00 00 00 00 3C 23 D7 0A 40 40 00 00 00 00 00 00 00 00 00 00 3E E6 66 66 42 A4 7F DF 00 00 00 00 00 00 00 00 41 10 00 00 3C 23 D7 0A 00 00 00 00 43 AF 00 00 43 BE 00 00 43 48 00 00 43 16 00 00 3F 33 33 33 3F 0C CC CD 3E DC 28 F6 65 16 (已执行……)

命令:68 1B 1B 68 02 00 6C 32 01 00 00 00 00 00 0E 00 00 04 01 12 0A 10 02 00 2C 00 01 84 00 06 E0 79 16 (命令内容是什么???)
应答:E5 (收到)
命令:10 02 00 5C 5E 16 (请立即执行)
应答:68 41 41 68 00 02 08 32 03 00 00 00 00 00 02 00 30 00 00 04 01 FF 04 01 60 3F 06 88 0B BF 06 88 0B 00 78 00 00 00 05 00 00 00 05 00 00 01 2C 00 00 01 2C 00 00 43 5F 62 38 00 00 00 00 42 B1 4D B6 42 86 0B 6F 5A 16 (已执行……)

命令:68 33 33 68 02 00 6C 32 01 00 00 00 00 00 26 00 00 04 03 12 0A 10 02 00 03 00 00 81 00 00 00 12 0A 10 02 00 02 00 00 82 00 00 00 12 0A 10 02 00 C8 00 01 84 00 00 00 AD 16 (命令内容是什么???)
应答:E5 (收到)
命令:10 02 00 5C 5E 16 (请立即执行)
应答:68 EB EB 68 00 02 08 32 03 00 00 00 00 00 02 00 DA 00 00 04 03 FF 04 00 18 63 91 01 00 FF 04 00 10 2D 00 FF 04 06 40 A9 00 00 08 41 00 63 91 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3E E7 4C EC 43 7B 17 DE 3F CC CC CD 43 DC 00 00 43 7A 00 00 00 00 00 00 00 00 00 00 3C 23 D7 0A 40 40 00 00 00 00 00 00 00 00 00 00 3E E6 66 66 42 A4 92 64 00 00 00 00 00 00 00 00 41 10 00 00 3C 23 D7 0A 00 00 00 00 43 AF 00 00 43 BE 00 00 43 48 00 00 43 16 00 00 3F 33 33 33 3F 0C CC CD 3E DC 28 F6 19 16(已执行……)