How to handle OPC UA server returning endpoints with hostname different from that in the discovery URL.|OPC UA Standard|Forum|OPC Foundation

Avatar
Search
Forum Scope


Match



Forum Options



Minimum search word length is 3 characters - maximum search word length is 84 characters
Lost password?
sp_Feed sp_PrintTopic sp_TopicIcon
How to handle OPC UA server returning endpoints with hostname different from that in the discovery URL.
Avatar
Srijith Vijay
Member
Members
Forum Posts: 6
Member Since:
05/12/2021
sp_UserOfflineSmall Offline
1
02/22/2024 - 09:33
sp_Permalink sp_Print

Hi,

I am developing an OPC UA client and observed that multiple servers that I try to connect to are configured with endpoints having a hostname different from the hostname in the discovery URL.

This often leads to connection or timeout errors.

Is it advisable for clients to replace hostnames in the endpoint URLs returned by the server, with the hostname that was used in the “findServer” service to get discovery URL?

Are there any other things to consider if the client decides to replace the hostnames in endpoint URL?

Avatar
Randy Armstrong
Admin
Forum Posts: 1445
Member Since:
05/30/2017
sp_UserOfflineSmall Offline
2
02/23/2024 - 04:10
sp_Permalink sp_Print

There are many legitimate cases where the Server does not know the URL the client used to access it (i.e. via a NAT firewall).

Clients may replace the domain and port in any URL return in getEndpoints.

That said, this will likely lead to a domain mismatch on the certificate which IS a security risk.

This is why it is recommended that servers include all domains that can be used to access them.

Forum Timezone: America/Phoenix
Most Users Ever Online: 510
Currently Online:
Guest(s) 15
Currently Browsing this Page:
1 Guest(s)
Top Posters:
Forum Stats:
Groups: 2
Forums: 10
Topics: 1347
Posts: 4567