Connecting industrial devices to OPC server while keeping segregation

windows subnet

Solution 1:

By the way, 192.169.0.122/.123 are no private IP addresses. You should never use public addresses that you're not authorized to. Check out RFC 1918.

There are two basic approaches:

  1. You configure a separate network (p2p, switch, VLAN) for each machine and connect one server NIC to each network (but both within the 192.169.0.120/21 subnet or larger - which subnet mask to the machines use?). Then you use explicit entries in the server's routing table with low metrics to control which destination goes out of which interface. Note that host configurations are explicitly off-topic here.
  2. You create a shared network (VLAN) but use a switch with a private VLAN aka port isolation option to inhibit traffic between the machines' ports, just permitting traffic between the server and each machine.

I'd prefer #2 as a neater solution.

Related

Download speed low over http but Iperf is showing a high bandwidth
How do I configure RemoteApp to find the correct Gateway Server?
how i can write test virus?
Bind different iscsi nodes on different IP address
Daily Apt Upgrade causing oom-killer to kill my java server
Nginx with multiple domains/subdomains and ssl_certificate variable
how to delete group instance in GCP
How (if at all) is KVM used with enterprise workloads?
GCS fuse taking 10 minutes to perform ls
Setting different NS records as authoritative on authoritative DNS
503 service unavailable with high loads when using php7.3-fpm and lighttpd 1.4.53 connected via UNIX sockets instead of TCP
How do I hide Terminal windows using AppleScript?