POSSIBLE IOT SYSTEM ARCHITECTURES WITH GROOVFollow article
The groovbox (or groovServer running on a Microsoft Windows PC) plugs into a standard Ethernet network, just like a computer.
There are some ways you may want to use your groov mobile operator interface:
On premises, using existing wireless network
If you want to use your groov interface at your facility only (not remotely) anf have a wireless network already in a place, you can just plug groov in. Authorized users can monitor and control equipment in your interface as long as they are on the wireless network.
This diagram shows the basic architectural components:
- You plug the groovBox (or groovServer) into the same network as the industrial automation system you want to monitor or control;
- You build your groov mobile interface on a PC, on the same wired network as groov;
- Authorized users can use your interface from their smartphones or tablets using a WiFi connection.
Here's the same thing, visualizing people and objects instead of a chart:
On premises, using recommended system segmentation
For security reasons, we strongly recommend that you segment your automation system from your computer system. One easy way to do that is to use the two independent wired network interfaces on the groovBox. Authorized users can see the interface pages groov serves, but users do not have access to the system itself. With groov Server for Windows, you can accomplish the same segmentation with two NICs (network interface cards) in the PC.
On premises, using groov Box for WiFi
If you don’t have a wireless network in place, you can install an approved USB WiFi adapter right on the groov Box and use SoftAP. SoftAP provides a localized wireless network around the groov Box. As with any wireless network, the extent of coverage may vary widely based on interfering walls and equipment in the immediate area. See the groov Box User’s Guide for more information on approved adapters and using SoftAP.
Here’s the same concept with people and equipment in place:
OEMs and machine builders: HMI and access to machine
Machine builders and OEMs use groov in two ways:
- for an inexpensive, off-the-shelf HMI for machine operators;
- to quickly access machines themselves for troubleshooting and updates.
The fanless, small-footprint groov Box (or groov Server for Windows, if your machine already includes a PC) takes up little space. If you use a groov Box with an approved WiFi adapter and SoftAP, you can provide a localized wireless network around the Box. See the groov Box User’s Guide for more information. This diagram shows the groovBox inside the machine, accessed using SoftAP. Or you can build a mobile device into the machine to use as an HMI. No WiFi adapter needed. On an iPhone or iPad, use Guided Access mode to lock down the device so all it does is show your groov interface.
Internet access: Off premises, using recommended VPN
When you’re using a smartphone or table to monitor or control systems and equipment from somewhere outside your facility, you’re using the Internet to do so. For security, we strongly recommend using a VPN (virtual private network) for this type of access. Your IT department may already have a VPN set up. For more information, see the Guide to Networking groov.
Internet access: Off premises, using VPN and segmented systems
Here again, for security reasons we advise that you segment your computer system (which is on the Internet) from your automation system (which should not be on the Internet). Keeping your control system separate is one important key to keeping unauthorized people out of your systems. The groov Box can simplify segmentation with its two independent Ethernet network interfaces.