WinCC-OA Log Analysis SCADA Application Service - Reporting

Slides:

Advertisements

Similar presentations

OCEAN DATA SYSTEMS Presents Wonderware HMI Reports

Advertisements

MONITORING TOOLS Open Source Security Tools to monitor your network.

André Augustinus ALICE Detector Control System  ALICE DCS is responsible for safe, stable and efficient operation of the experiment  Central monitoring.

June 22-23, 2005 Technology Infusion Team Committee1 High Performance Parallel Lucene search (for an OAI federation) K. Maly, and M. Zubair Department.

Cluster architecture for Java web hosting at CERN CHEP 2006, Mumbai Michał Kwiatek, CERN IT Department Database and Engineering Services Group.

Evaluation of NoSQL databases for DIRAC monitoring and beyond

Log Monitoring, Management and Analysis with Nagios

“This presentation is for informational purposes only and may not be incorporated into a contract or agreement.”

CERN - IT Department CH-1211 Genève 23 Switzerland t Monitoring the ATLAS Distributed Data Management System Ricardo Rocha (CERN) on behalf.

Technology Overview. Agenda What’s New and Better in Windows Server 2003? Why Upgrade to Windows Server 2003 ?  From Windows NT 4.0  From Windows 2000.

T Sponsors Nino Crudele Integration MVP, Solidsoft Reply, Principal Consultant An Azure of Things, a developer’s perspective BizTalk Summit 2015 – London.

Clemens Düpmeier (KIT / IAI)

Web GIS Commander Technical Presentation. Copyright (C) MCS 2013, All rights reserved. 2 MCS Web GIS Commander is Web-based GIS (Geographical.

Web Archiving and Access Mike Smorul Joseph JaJa ADAPT Group University of Maryland, College Park.

AppDynamics Ohio User Group. What is ExactTarget? Software as a Service Marketing 500 million s sent a day 200 million web transactions a day.

Streamlining Monitoring Infrastructure in IT-DB-IMS Charles Newey ›

1 Makes Mobile WiMAX Simple Netspan Overview Andy Hobbs Director, Product Management 5 th October 2007.

DAM-Alarming Data Analytics from Monitoring, for alarming Summer Student Project 2015 A. Martin, C. Cristovao, G. Domenico thanks to Luca Magnoni IT-SDC-MI.

Carlos Fernando Gamboa RACF, BNL HEPiX

CERN IT Department CH-1211 Geneva 23 Switzerland t CF Computing Facilities Agile Infrastructure Monitoring CERN IT/CF.

Centralized Logfile Search (a.k.a. Tracing) Vito Baggiolini with Gergo Horanyi, Felix Ehm, Stephen Page.

Dave Oravetz VP of Engineering. European Sales Meeting – December 6, 2007 – Company Confidential 2 Hyper-Historian Key Benefits Efficient High Performance.

2 Floor, , Sunnae-Dong,Kangdong-Gu Seoul, Korea T | F | SEOJINDSA CO. LTD Enterprise LDAP Team LDAP.

Computing Facilities CERN IT Department CH-1211 Geneva 23 Switzerland t CF Agile Infrastructure Monitoring HEPiX Spring th April.

WebWatcher A Lightweight Tool for Analyzing Web Server Logs Hervé DEBAR IBM Zurich Research Laboratory Global Security Analysis Laboratory

CERN IT Department CH-1211 Genève 23 Switzerland t CERN IT Monitoring and Data Analytics Pedro Andrade (IT-GT) Openlab Workshop on Data Analytics.

IPS Infrastructure Technological Overview of Work Done.

CASTOR logging at RAL Rob Appleyard, James Adams and Kashyap Manjusha.

CERN IT Department CH-1211 Genève 23 Switzerland t CERN Agile Infrastructure Monitoring Pedro Andrade CERN – IT/GT HEPiX Spring 2012.

Alfresco Monitoring with OpenSource Tools Miguel Rodriguez Technical Account Manager.

CERN IT Department CH-1211 Genève 23 Switzerland t Monitoring: Present and Future Pedro Andrade (CERN IT) 31 st August.

Arizona SharePoint Professionals Group.

IT Monitoring Service Status and Progress 1 Alberto AIMAR, IT-CM-MM.

A presentation on ElasticSearch

Wataru Takase, Tomoaki Nakamura, Yoshiyuki Watase, Takashi Sasaki

Outline Introduction and motivation, The architecture of Tycho,

DIGITAL SOLUTION FOR INSTITUTES, SCHOOLS, COLLEGES, CLASSES

Monitoring Evolution and IPv6

Agenda:- DevOps Tools Chef Jenkins Puppet Apache Ant Apache Maven Logstash Docker New Relic Gradle Git.

Centralised logging using RSYSLog

Backdooring enemies with a Proxy …..

Platform as a Service (PaaS)

Hadoop and Analytics at CERN IT

Users and Administrators

Netscape Application Server

Golubev Alexandr, MAGIC project 2016

PVSS Evolution in Relation to Databases

One independent ‘policy-bridge’ PKI

Combining Metrics and Logs for Holistic System/Application Analysis

CERN-Russia Collaboration in CASTOR Development

Introduction to Microservices Prepared for

Cristina del Cano Novales STFC - RAL

9/19/2018 7:06 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.

Logsign All-In-One Security Information and Event Management (SIEM) Solution Built on Azure Improves Security & Business Continuity MICROSOFT AZURE APP.

NetFlow Analysis with Elastic Stack

another noSql customization for the HDB++ archiving system

Get your ETL flow under statistical process control

End to End Monitoring Solution using Open Source Technology where webMethods 9.10 is used as ESB IBM Confidential.

Project Goals Collect and permanently store the data flowing around ONAP system into several Big Data storages, each in different category. Also serve.

Proactive Management of Federation using ELK

The ELK stack - get to know logs

Learn ELK in Docker in 90 minutes

Graduation Project #1 University Internet Student Registration System

Features Overview.

Indexing with ElasticSearch

Alarm information in CS-Studio

Building a minimum viable Security Operations Centre

Sending data to EUROSTAT using STATEL and STADIUM web client

STATEL an easy way to transfer data

Users and Administrators

Presentation transcript:

WinCC-OA Log Analysis SCADA Application Service - Reporting James Hamilton 22/11/2016

WinCC-OA Log Analysis Aim: Collect, parse, analyse WinCC-OA Logs Provide centralised access and search abilities Related use case: value change and alarm statistics from Oracle RDB 8/3/2016

The Elastic Stack 8/3/2016

Elasticsearch “Elasticsearch is a distributed, open source search and analytics engine, designed for horizontal scalability, reliability, and easy management. It combines the speed of search with the power of analytics via a sophisticated, developer-friendly query language covering structured, unstructured, and time-series data.” https://www.elastic.co/products CERN IT provide Elasticsearch and Kibana as a service For our use cases IT has provided us we a cluster on the TN REST API Password protected HTTPS 8/3/2016

Logstash / Filebeat “Logstash is a flexible, open source data collection, enrichment, and transportation pipeline. With connectors to common infrastructure for easy integration, Logstash is designed to efficiently process a growing list of log, event, and unstructured data sources for distribution into a variety of outputs, including Elasticsearch.” https://www.elastic.co/products Filebeat is a lightweight application for reading log files and forwarding to Logstash (or directly to Elasticsearch). 8/3/2016

Kibana Current Time Period Filter Bar 8/3/2016

Our Installation Single Machine IT Service 8/3/2016

Our Installation - Filebeat Installed on each server Updates are sent to the Logstash Shipper Filebeat waits for acknowledgements from the Logstash Shipper 8/3/2016

Our Installation - Logstash Shipper Concatenates multi-line messages Outputs concatenated messages and statistics to the queue 8/3/2016

Our Installation - Logstash Indexer Reads messages from the queue Parses the WinCC-OA logs with regexes Outputs parsed message to Elasticsearch and statistics to the queue 8/3/2016

Our Installation - Logstash Monitor Reads statistics messages from the queue Reads log files from Logstash Outputs statistics messages to Elasticsearch 8/3/2016

WinCC-OA Log Dashboard 8/3/2016

Existing Log Viewer Standalone application with Oracle & DIM interfaces 8/3/2016

ELK Log Viewer 8/3/2016

Log Viewer comparison Feature ELK Logviewer Old Logviewer Database Elasticsearch Oracle Project modification required? No Yes (log handler dll) Type Web application Standalone application Save filters Feasible to implement Yes Severity colour coding 8/3/2016

Statistics 30 projects (on-going adoption) ~41 million WinCC-OA log entries in total, ~12GB total* ~600,000 log entries per day, ~500MB per day * includes 2 replicas 8/3/2016

RDB Statistics 8/3/2016

Our Installation Aim: to get high-level statistics from the SCADA Application Service archive 8/3/2016

RDB Statistics Dashboards Summary Statistics PSEN CIET Early Warning System MOON statistics 8/3/2016

Demo WinCC-OA Log Dashboard ELK Log Viewer 8/3/2016

Correlations? 8/3/2016