openWB Forum

Hello openWB community,

I'm currently integrating my openWB system with several energy management devices and I want to ensure the network security of all connected devices, especially when used in larger, more complex setups. In particular, I'm interested in optimizing network redundancy and security using HSRP (Hot Standby Router Protocol) and VRRP (Virtual Router Redundancy Protocol) for improving uptime and preventing single points of failure.

Could anyone provide insights on the following:

How can HSRP and VRRP improve the security of my EV charger network?
Are there specific network configurations within openWB that I should consider to implement these protocols?
What are the best practices for securing the communication between openWB devices in a redundant network setup?
Is there any known compatibility or issue with these protocols when using openWB alongside other smart grid or energy management systems?

Looking forward to your suggestions!

Best regards,

gabin8207 hat geschrieben: ↑Mi Dez 11, 2024 8:06 pm Could anyone provide insights on the following:

How can HSRP and VRRP improve the security of my EV charger network?

They can't, as both methods have nothing to do with security.
Maybe you are confusing security with availability (like in security of supply).

Are there specific network configurations within openWB that I should consider to implement these protocols?

No, as both methods will be used between routers...clients would not notice the change of their local gateway.
That said, having HA on the internet gateway is nice, but not essentially required for local EV charging.
Only some features rely on internet connection, but not heavily (like time, dynamic prices, cloud-UI - where the first two can "live" without internet for hours or longer)

What are the best practices for securing the communication between openWB devices in a redundant network setup?

avoid different networks/ip-segments in openWB components on a local site, as some protocols and features could rely on a heartbeat between components which might have a problem when connection is routed/via a router.
All openWB boxed are single homed anyway, so no chance for redundancy.

Is there any known compatibility or issue with these protocols when using openWB alongside other smart grid or energy management systems?

some other brands / components, like inverters and EMS from SMA use multicast communication as standard.

Hello,

Thanks for the clarification! I now see that HSRP and VRRP are more about improving network availability than security. I’ll focus on using them to avoid single points of failure.

I’ll also avoid separating OpenWB components into different IP networks to ensure smooth communication between devices.

Good to know that most OpenWB features don’t rely heavily on the internet for local EV charging. I’ll keep the multicast issue in mind when using systems like SMA inverters.

Thanks again for the advice!