Plant floor OT networks have very different requirements than IT networks. Things like very low latency, safety communications and the fact that they tend to have much larger sections that are flat layer 2 networks connecting end devices like robots, PLCs, programing terminals etc; Great video though. I came from many years in IT into OT and it was really eye opening for me! I will say that IT networks also use VLANs to segregate traffic, not just for network monitoring.
I would add that I think that the IT vs OT networks is more about kingdom building than it is about functionality. Vlans and Firewalls will help do all of this. What is not mentioned here are all the systems and services which OT relies upon, that sits on the IT network. Maybe I am missing something but I don't see the benefit of two completely different networks mostly because OT relies upon IT apps/services...
@@brihal7499Well I think I understand some reasoning. There was a Reddit post not too long ago and it seems to from that post that OT systems are 'stupid' in that to help maintain the speed of such systems the devices in them don't have a ton of intelligence that we would expect from normal IT devices for example if you send a malformed network packet to a traditional it device it's more likely to simple drop the packet but OT systems may not have that intelligence as it might slow down their operation and therefore it can cause the OT devices to misbehave.
@@jackkraken3888 A lot of the OT guys I've talked to hate managed switches. They seem to blame the managed switches for things like FCS errors, late collisions, duplex mismatches, because the managed switches make those things visible. It's a shoot-the-messenger situation.
Good stuff; a question or remark! Addressing: in OT we cant say that addresses can be or are duplicated as well. They differ either by PLC address or by function codes or final Labels distinguish them from each other.
Network segmentation / microsegmentation / zero trust are all (security) things on an 'IT' network. Maybe if you do an updated video you could talk about security / implicit trust.
Im not so sure about the VLAN difference. In IT its a very important tool to segment the network for example you can have a VLaN only for VoIp system and a vlan for accoutning or sales. That way they can't interfere with one another and even bad guys will have a hard time attacking other vlans.
Not sure where this guy gets his information from, but he's misinformed and plain wrong on most of what he says here. Just because that's how it was done 30 years ago, doesn't mean that's how it should continue today. Ask Tesla or any other majorly automated manufacturer and almost all or going to some sort of IT/OT convergence.
Plant floor OT networks have very different requirements than IT networks. Things like very low latency, safety communications and the fact that they tend to have much larger sections that are flat layer 2 networks connecting end devices like robots, PLCs, programing terminals etc; Great video though. I came from many years in IT into OT and it was really eye opening for me! I will say that IT networks also use VLANs to segregate traffic, not just for network monitoring.
is it good for starting career in OT as a fresher?.... please tell us your experience in OT
IT uses VLANS to segment, it's their entire purpose. Not sure where you got the idea from that it's for monitoring switches.
I would add that I think that the IT vs OT networks is more about kingdom building than it is about functionality. Vlans and Firewalls will help do all of this. What is not mentioned here are all the systems and services which OT relies upon, that sits on the IT network. Maybe I am missing something but I don't see the benefit of two completely different networks mostly because OT relies upon IT apps/services...
Well in some environments having a dedicated Vlan for network monitoring makes sense.
@@brihal7499Well I think I understand some reasoning. There was a Reddit post not too long ago and it seems to from that post that OT systems are 'stupid' in that to help maintain the speed of such systems the devices in them don't have a ton of intelligence that we would expect from normal IT devices for example if you send a malformed network packet to a traditional it device it's more likely to simple drop the packet but OT systems may not have that intelligence as it might slow down their operation and therefore it can cause the OT devices to misbehave.
@@jackkraken3888 A lot of the OT guys I've talked to hate managed switches. They seem to blame the managed switches for things like FCS errors, late collisions, duplex mismatches, because the managed switches make those things visible. It's a shoot-the-messenger situation.
Interesting video. Good comments, too, if you ignore the haters. Thx.
It's eye opening, to see what OT people think about IT.
Good stuff;
a question or remark!
Addressing: in OT we cant say that addresses can be or are duplicated
as well.
They differ either by PLC address
or by function codes or final Labels distinguish them from each other.
Network segmentation / microsegmentation / zero trust are all (security) things on an 'IT' network.
Maybe if you do an updated video you could talk about security / implicit trust.
Im not so sure about the VLAN difference. In IT its a very important tool to segment the network for example you can have a VLaN only for VoIp system and a vlan for accoutning or sales. That way they can't interfere with one another and even bad guys will have a hard time attacking other vlans.
In the context of your good discussion, what is meant by cyclic message?
e.g. PLC en.wikipedia.org/wiki/Programmable_logic_controller
IT is not whenever! DoD and Government applications have Real Time and Near Real Time requirements also.
Not sure where this guy gets his information from, but he's misinformed and plain wrong on most of what he says here. Just because that's how it was done 30 years ago, doesn't mean that's how it should continue today. Ask Tesla or any other majorly automated manufacturer and almost all or going to some sort of IT/OT convergence.
You only illustrated that you are a dinosaur
Not a very good video. Not a clear and decisive difference. Seems vague.
Yeah and my problem is that I feel a hint of disdain for IT from the narrator but I'm 100% sure about that.n