logo elektroda
logo elektroda
X
logo elektroda
Advanced Search
logo elektroda

Interior and reverse engineering of the Ariston Velis 80 Wi-Fi electric water heater on ESP32 (part1

p.kaczmarek2 1617 36
ADVERTISEMENT
Treść została przetłumaczona polish » english Zobacz oryginalną wersję tematu
Report a violation of the law
Reply Cool? Ranking DIY | New topic
Notify about new articles
📢 Listen (AI):
  • #31 21721072
    krzbor
    Level 28  
    By the way, I wonder what it is:
    PCB section with coils, LED display, and solder pads highlighted in red box .
    Looks like the leads under the connector.
  • ADVERTISEMENT
  • #32 21721082
    Przemcio
    VIP Meritorious for electroda.pl
    Not far away is the CN5 - under probably an FFC connector for a fussy display
    future-proof. If there is Wi-Fi you will be able to YT yourself on the heater ;) .
  • ADVERTISEMENT
  • #33 21721427
    DeDaMrAz
    Level 21  
    There are 2 sensors connected to the MCU board, one is on the cold intake tank and the other is in the warm or outlet tank, probably something to do with shower count feature (maybe)

    Close-up of electronics workbench with PCB board, wires, and testing probes

    Also there appears to be some some sort of a clock transmitted between MCU and WiFi module as there an RTC crystal and backup battery (super cap) on board, so that will probably make our life easier in decoding the signal structure.

    Main thing for me is to decode the intermediate frames as I can then focus on the actual commands as the buss is supper chatty and I have to filter that communication out first.
  • ADVERTISEMENT
  • #34 21721746
    sq3evp
    Level 38  
    bumble wrote:
    .
    And why. You hang such a thing on the wall and use it, when the heater dies you replace the heater or the whole thing. An electrode is probably once every 15 years. I've never heard of such devices being serviced. Unless you boil water in it, that's different.
    .
    I have seen a video where the electrode was replaced and cleaned - I think you are right, because the author tweirred that the boiler had not been moved for 15 years and was still working, only the electrode was almost gone, the heaters were not that dirty. Maybe the manual only says what to do to make it work long and painlessly?
    Nothing, I'll probably have a look, the water is quite soft, so maybe it won't scale up so quickly? I've had the gas flow unit for over 10 years and it hasn't been cleaned - the flow was good, only the gas ignition electrode needed cleaning every 9-10 months or so.
  • #35 21722352
    Nargo
    Level 23  
    Wiring diagram of Velis EVO WiFi heater with relays and temperature sensors .
    >>21721427 The diagram shows two sensors per tank and interchangeable heater switching. That is, it probably heats the output tank first and then the input tank. Dale is probably already choosing which heater to heat depending on the temperature drop in the individual tanks.
    I assume that, depending on the ΔTemperature, the controller is able to calculate the water flow through the tank and determine the appropriate operating algorithm in order to maintain a constant temperature at the outlet, which is effectively helped by two tanks and two heaters of 1.5kW each (switched interchangeably).
  • ADVERTISEMENT
  • #36 21723602
    DeDaMrAz
    Level 21  
    Some progress on the decoding front... one reporting packet isolated with some values decoded.

    Capture of communication data in hexadecimal and decoded text format

    Managed to figure out inlet and outlet temperature readings and set temperature from the traffic... more to come as soon as some time is available.
  • #37 21724871
    DeDaMrAz
    Level 21  
    There is something else on the board that I somehow missed because I focused on the WiFi part of the board. There is a NFC tag on the board, not yet sure what it does but this is what can be read from it:

    Green PCB with coil springs and electronic components

    Code: text Expand Select all Copy to clipboard
    {
  "VER": "01",
  "R1": "0054",
  "R2": "00B4",
  "R3": "00C4",
  "R4": "0264",
  "R5": "0274",
  "R6": "0304",
  "ED": "03F4",
  "HFG": "000342422102",
  "HHW": "460130051002_93D2500900",
  "HHW_raw": "460130051002_93D2500900",
  "HSW": "660060273204_25.04.00",
  "HSN": "SERIAL_OMITTED",
  "TST": "PNNPNNN",
  "ECN": "93D2303400",
  "VER2": "01",
  "LD1": "NO",
  "LD2": "NO",
  "LD3": "00",
  "MKT": "EU",
  "TP1": "000",
  "TP2": "000",
  "TP3": "000",
  "WIF": "1",
  "INI": "0",
  "TMN": 40,
  "TMX": 80,
  "TSP": "01",
  "TDF": 70,
  "THY": 5,
  "ABT": 60,
  "ABD": 60,
  "ABF": 30,
  "ABS": 1,
  "ALT": 60,
  "ALS": 0,
  "AFT": 16,
  "AFH": 11,
  "ECT": 40,
  "ECS": 1,
  "QIK": 0,
  "AIO": "00",
  "AIS": "00",
  "AOO": "00",
  "AOS": "00",
  "SRT": 40,
  "SRS": 1,
  "HEF": 2,
  "LT1": 40,
  "LT2": 50,
  "LT3": 60,
  "LT4": 70,
  "LT5": 80,
  "LO1": 30,
  "LO2": 38,
  "LO3": 48,
  "LO4": 60,
  "LO5": 70,
  "DLY": 540,
  "BUZ": 1,
  "POS": "M",
  "CAI": 32,
  "CAO": 32,
  "DIA": 220,
  "PI1": 1500,
  "PI2": 0,
  "PO1": 1500,
  "PO2": 0,
  "CK3": "555A",
  "TFG": "XXXXXXXXXXXX",
  "NIN": "XXXXXXXXXXXX",
  "NOU": "XXXXXXXXXXXX",
  "BFG": "3100946",
  "PLT": 5,
  "YDY": 25169,
  "BSN": 4430416,
  "NFC": "X",
  "SAT": "XXXXXXXXXXXX",
  "R1C": "000008",
  "R2C": "000038",
  "R3C": "000000",
  "H1H": "000000",
  "H2H": "000002",
  "H3H": "000000",
  "PSO": "000007",
  "PSK": "000001",
  "POH": "000024",
  "ER1": "XXX",
  "ER2": "XXX",
  "ER3": "XXX",
  "ER4": "XXX",
  "ER5": "XXX",
  "LMD": "MAN",
  "LTS": 70,
  "LAB": 1,
  "MAC": "MAC_OMITTED",
  "WSN": "SERIAL_OMITTED"
}


    It's obvious from the capture that some of these values can be seen in the captured traffic but I am yet to corelate them and understand their meaning.
Reply Cool? Ranking DIY | New topic
Notify about new articles
📢 Listen (AI):
Report a violation of the law

Topic summary

The discussion focuses on the Ariston Velis 80 Wi-Fi electric water heater, exploring its hardware, communication protocol, and potential for firmware modification. The device includes two heaters and two temperature sensors. The Wi-Fi module is based on an ESP32 chip, used strictly for communication via a 5V UART interface connected to test points on the PCB. The module's flash memory is encrypted, likely preventing direct reflashing via UART, which complicates custom firmware installation. Alternatives such as replacing the Wi-Fi module with a more accessible ESP32 variant or using a proxy module like ESP8266 with level shifting (e.g., ADuM1201) are considered. The project aims to develop open-source firmware to enable local control without reliance on manufacturer cloud services, addressing concerns about closed ecosystems and forced cloud connectivity. Tools like PulseView with UART decoder and Python GUI applications are used to analyze and visualize the communication protocol. The initiative emphasizes user control over IoT devices, enabling customization and integration with other ecosystems while bypassing proprietary software limitations.
Summary generated by the language model.
Popular Topics
ADVERTISEMENT