Presentation is loading. Please wait.

Presentation is loading. Please wait.

M. DOBSON ON BEHALF OF ALL EXPERIMENTS Systems Management of the DAQ systems Special thanks to Diana, Sergio, Ulrich, Loïc, Niko Systems Management, Second.

Published byKimberly Marshall Modified over 8 years ago

Similar presentations

Presentation on theme: "M. DOBSON ON BEHALF OF ALL EXPERIMENTS Systems Management of the DAQ systems Special thanks to Diana, Sergio, Ulrich, Loïc, Niko Systems Management, Second."— Presentation transcript:

1 M. DOBSON ON BEHALF OF ALL EXPERIMENTS Systems Management of the DAQ systems Special thanks to Diana, Sergio, Ulrich, Loïc, Niko Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016

2 Purpose of System Administration Keep the DAQ and sub-detector systems in the best possible state to take data ! Help and contribute to the design of the DAQ systems Large farms and network, including supporting HW (NAS, etc…) need maximum up time (high availability)  Minimize single points of failure: redundant systems  Good monitoring for fast diagnostics  Fast recovery (configuration management, local installs or netboot)  Adapting to loss of HW: virtualization, HA tools (corosync, pacemaker, HA proxies)  Redundant networks and connections  Live with GPN disconnect (local data storage) Run Efficiency and resilience  Basically identical to last DAQ@LHC forum (see presentations at http://indico.cern.ch/event/217480/ ) http://indico.cern.ch/event/217480/ Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 2

3 Content Run2 System Sizes Operating Systems Installation and booting Configuration management  Package Repositories Virtualization Monitoring  Network monitoring Support Hardware, procurement, and maintenance New HW challenges: embedded Linux, SoC, ATCA/uTCA Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 3

4 Run 2 System sizes ALICE  155 readout machines, 20 event builders, 20 services servers, 18 switches (data + control) ATLAS  3600 machines (2500 netboot), ~200 control switches, 75 data switches, 480 HLT nodes being delivered, 130 DCS nodes (Linux) CMS:  1250 PC DAQ related (including farm), 200 sub-detectors, 100 DCS, 50 central, 100 / 70 control / data switches LHCb  1750 farm nodes, 100 Servers, 300 VMs, 200 switches Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 4

5 Operating Systems Currently based on one of the latest SLC6 releases LHCb has a few central servers on CERN CentOS 7:  New control room machines  Web servers being migrated now Migration to CERN CentOS 7:  CMS plans to start with hypervisors and some central services during Q3-Q4 2016, DAQ tests in Q4 2016 for migration in YETS 2016 (new DAQ SW release only on CC7)  LHCb: no firm plans for DAQ or farm yet  ATLAS: will start looking at it, might need it for next version of WinCC at next YETS  ALICE: planned for some services (monitoring/shared file systems) Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 5

6 Installation/booting of nodes Network booting:  LHCb and ATLAS have many/most nodes network booted  LHCb: control room machines, farm nodes, credit card PCs  Infrastructure for NFS OS mounts and boot servers  Hierarchical structure Local installation  CMS and ALICE have locally installed nodes  LHCb have some locally installed nodes (other servers)  ATLAS has DCS, infrastructure servers, and also DAQ infrastructure Centralized storage  ATLAS and CMS have NetApp NAS for home directories and project areas  LHCb: DDN for physics data, home/group/project directories. NetApp for the virtualization infrastructure  ALICE: shared file system for the control room machines, SAN file system (1PB) as buffer for the event builders Virtualization: see later Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 6

7 Configuration Management Puppet: ATLAS preceded IT, CMS and LHCb followed IT  Versions:  ATLAS version 3.3.2 & migrated to Puppet DB  CMS version 2.X, planning migration to v3 by summer 2016  LHCb version 3.5, ideas to go to version 4  ALICE version 3.8.6  Install:  ALICE: basic kickstart, then puppet  ATLAS: uses own ConfDB for provisioning (no plans for Foreman)  CMS: Foreman used to kickstart  All use pull mechanism  CMS & LHCb: puppet agent, respectively 30m, 2h (with splay), LHCb also on netboot  ATLAS: Puppet used for netboot and localboot  ATLAS uses Puppet also for netboot image creation and boot time specialization Puppet apply for netboot nodes via cron job every hour Plans are to continue with Puppet Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 7

8 Package repositories / software distribution Software repositories (OS, core):  Regular mirroring of the IT yum repositories  Implemented as dedicated snapshots Able to go back in time Versioned test/production/… for ATLAS  ATLAS/ALICE have dedicated security repo to only bring in security updates (not general ones)  LHCb use BTRFS features of versioning (snapshoting)  ALICE: snapshot ~once per year  ATLAS & CMS: use hard links for duplicate files DAQ & sub-system software  ATLAS: distributed hierarchically by file servers (rsync + NFS)  ALICE & CMS: use RPMs, and software repositories. CMS has a Dropbox built on top.  LHCb: use CVMFS Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 8

9 Virtualisation More and more use as indicated at last workshop ATLAS:  6 Gateways  2 detector nodes  4 Domain controllers (IT)  DCS (~ 40 Windows VMs, planned migration to Linux)  LDAP servers (9)  DAQ web service backend (10)  Technical infra (SLIMOS) (2)  3 public nodes LHCb:  Login services  Infrastructure services (some)  Most DCS servers (iSCSI booted CCPC for HW access) CMS:  Domain controllers (IT)  Gateways  Infrastructure services (some)  Detector machines  Some DCS (windows VMs)  DAQ services (run control) ALICE:  Gateway services (10 VMs per server)  Critical services (1 VM per server) Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 9

10 Virtualization 2 Technologies:  ATLAS use KVM (Kernel-based Virtual Machine) hypervisor  CMS use oVirt clusters with underlying KVM  LHCb use Red Hat Enterprise Virtualization (RHEV) based on oVirt and KVM  ALICE use HyperV (WinServer 2012R2), also snapshots Live migrations  ALICE, CMS & LHCb: yes  ATLAS: no (no suitable image storage provisioned, conscious decision, spread risk on more servers), could be reviewed in CC7 as no need for common storage Migration on failures of HW ?  CMS: HA feature of oVirt  ALICE: fail over to other hypervisors  LHCb: HA feature of RHEV  ATLAS: restart on different Hypervisor from image backup Alternative usage of HLT Farms:  Cloud usage (ATLAS, CMS): Openstack based, VMs prepared by offline teams  LHCb run Dirac SW for offline processing during shutdowns (no cloud) Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 10

11 Monitoring Large infrastructure must be monitored automatically  Proactively warn of failure or degradation in system  Avoid or minimize downtime What is monitoring ?  Data collection  Visualization (performance, health)  Alerting (SMS, email) Most experiments use Icinga2  Gearman/mod_gearman (queue system) deprecated Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 11

12 Monitoring 2 ATLAS  Ganglia for performance data  Icinga2 (gets some data from Ganglia)  Icinga config generated from ConfDB  70k checks  Icinga2Web  scripts for massive execution  notifications being improved for wider audience LHCb  Icinga2  Configuration managed by Puppet using info from Foreman CMS  Ganglia for some performance data  Icinga2 (manual config)  Icinga2Web ALICE  Zabbix  No more updates in SLC6 for the server part  Migration of servers to CC7 Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 12

13 Control Network: config & monitoring ALICE:  Installed and managed by ALICE  SNMP traps for the monitoring  Static configs, tftp config load on boot under study CMS:  Control network configured & monitored by IT  Spectrum available to us.  Icinga2 monitors switches being up/down and sets dependencies ATLAS:  Part of control network managed by DAQ network team  IT configure and manage the rest (Spectrum available, Icinga monitored also)  Icinga (version1) for device/link health monitoring and network traffic alerts  Netis for device traffic monitoring and device environmental metrics. LHCb:  Installed & managed by DAQ  Cacti and Icinga monitoring Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 13

14 Support Ticket systems used to track issues or requests  ALICE & CMS use JIRA (IT provided)  ATLAS uses Redmine (local, started before IT JIRA available)  LHCb uses ServiceNow (IT provided) Urgent matters are managed via on-call teams with different philosophies  ALICE: DAQ on-call as first line, dispatches other experts as needed  CMS & LHCb: DAQ on-call is the first line, then SysAdmins  ATLAS: direct call to TDAQ SysAdmins Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 14

15 HW, Procurement & maintenance Do experiments follow IT tenders ? For what HW ? How does maintenance change?  LHCb:  Try to follow IT tenders whenever possible  No difference as they have always done the maintenance themselves  ALICE do not follow IT tender for the server HW (due to RORC HW specifics), however uses market survey  5 year on-site warranty, only small repairs done by SysAdmins (e.g. disk in holder)  ATLAS follow IT tenders  Additional communication layer (IT), longer part replacement  More issues seen than on previous (non IT) tenders  CMS follows IT tenders for farms  Maintenance is radically different, before had 5-year on-site warranty HW inventory, what do we do?:  HW history and issue tracking: Redmine and JIRA not well suited  IT tools very integrated in their custom workflow  CMS have used OCS inventory (open source technical management solution of IT assets) and GLPI (Information Resource-Manager with an Administration-Interface). It is being revived. Collaboration between experiments is probably good here. Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 15

16 New HW challenges Embedded Linux, SoC  ATLAS: 2 sub-detectors started using embedded Linux  Security documents required for the management of the security updates by them  LHCb: Credit card PCs (Atom based), standard pinout, not really SoC  First few Raspberry Pi devices, some Arduino (controllers)  How do you manage them, also for security updates etc… ? ATCA and uTCA hardware  Has needed much prototyping and testing  ATLAS: 5 sub-detector using ATCA  Different manufacturers adopted (Asis, Pentair, Schroff), Pigeon Point for the shelf managers  CMS: 6-7 sub-detectors using uTCA  Different manufacturers used for MCHs (NAT, Vadatech), and crates (Schroff, Vadatech), specific backplanes for certain lines (TTC distribution)  ALICE and LHCb: happily xTCA free ! Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 16

17 HW Challenges: uTCA/ATCA CMS is uTCA based: 6U chassis with 12 AMCs + MCH + data concentrator (AMC13)  Ethernet to the MCH (control/monitoring of crate)  Using mainly IPBus to talk over Ethernet (1Gb) to AMCs (slow control, monitoring and local readout)  Has many implications (see next slide) as endpoints are simple  Data paths are through backplane to AMC13 mainly + readout from there  Some people use PCIe bridges on MCH to make the crate look like an extension of the controlling PC PCIe bus (point to point links with single points of failure)  CMS will likely go to ATCA for Run 3 (more real estate for the electronics)  Some people have a SoC on the AMC board with the FPGA (Zynq by Xilinx) running some embedded version of Linux ATLAS use ATCA  Switch fabric inside crate used + additional Switch cards for external connectivity  IP addresses allocated via DHCP, some hardcoded, IPBus IP allocated via i2c bus  IPBus used for configuration and update  Shelf manager provides SNMP access for DCS Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 17

18 uTCA in CMS uHA L Target AMC MCH Router Dedicated Switch 1Gb/s Rack Switch 1Gb/s Bridge PC ControlHub Rack Switch Bridge PC contains: Control Hub System Manager RARP Daemon 1Gb/s Ancilliary traffic: DHCP, PSU Firewall to avoid direct connections to MCH/AMC (not in place yet) Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 18

19 Conclusion DAQ clusters are no longer exceptionally large  Can “follow” industry development and adopt “standard tools” (e.g. Puppet, Icinga2)  However variety of HW and uptime requirements are higher  Workload per host higher than most IT, grid farms, virtualized clusters DAQ is mainly NOT virtualized  Squeeze most performance and lowest latency from COTS HW  Dedicated data network connections  This has much impact:  On the overall architecture  On SysAdmin load (harder than fully virtualized environment) Standard IT technologies going further towards detectors  More versatile clients for SysAdmins.  New technologies (SOC, embedded Linux) with their security implications  SysAdmins should be an integral part of designing RUN3/4 DAQ/dataflow systems Much can be shared between experiments (and IT)  Knowledge, expertise  Investigations, research, experience  Restart X-experiment meetings Systems Management, Second Joint Workshop on DAQ@LHC, 12-14 April 2016 19

Download ppt "M. DOBSON ON BEHALF OF ALL EXPERIMENTS Systems Management of the DAQ systems Special thanks to Diana, Sergio, Ulrich, Loïc, Niko Systems Management, Second."

Similar presentations

MUNIS Platform Migration Project WELCOME. Agenda Introductions Tyler Cloud Overview Munis New Features Questions.

MUNIS Platform Migration Project WELCOME. Agenda Introductions Tyler Cloud Overview Munis New Features Questions.
User Documentation.  You cannot build a system for a client and leave them without adequate documentation  Computer systems are complex, require configuration.

User Documentation.  You cannot build a system for a client and leave them without adequate documentation  Computer systems are complex, require configuration.
An Approach to Secure Cloud Computing Architectures By Y. Serge Joseph FAU security Group February 24th, 2011.

An Approach to Secure Cloud Computing Architectures By Y. Serge Joseph FAU security Group February 24th, 2011.
CHEP 2012 – New York City 1.  LHC Delivers bunch crossing at 40MHz  LHCb reduces the rate with a two level trigger system: ◦ First Level (L0) – Hardware.

CHEP 2012 – New York City 1.  LHC Delivers bunch crossing at 40MHz  LHCb reduces the rate with a two level trigger system: ◦ First Level (L0) – Hardware.
1 © Copyright 2010 EMC Corporation. All rights reserved. EMC RecoverPoint/Cluster Enabler for Microsoft Failover Cluster.

1 © Copyright 2010 EMC Corporation. All rights reserved. EMC RecoverPoint/Cluster Enabler for Microsoft Failover Cluster.
Copyright 2009 FUJITSU TECHNOLOGY SOLUTIONS PRIMERGY Servers and Windows Server® 2008 R2 Benefit from an efficient, high performance and flexible platform.

Copyright 2009 FUJITSU TECHNOLOGY SOLUTIONS PRIMERGY Servers and Windows Server® 2008 R2 Benefit from an efficient, high performance and flexible platform.
1© Copyright 2011 EMC Corporation. All rights reserved. EMC RECOVERPOINT/ CLUSTER ENABLER FOR MICROSOFT FAILOVER CLUSTER.

1© Copyright 2011 EMC Corporation. All rights reserved. EMC RECOVERPOINT/ CLUSTER ENABLER FOR MICROSOFT FAILOVER CLUSTER.
Virtual Network Servers. What is a Server? 1. A software application that provides a specific one or more services to other computers  Example: Apache.

Virtual Network Servers. What is a Server? 1. A software application that provides a specific one or more services to other computers  Example: Apache.
CERN IT Department CH-1211 Genève 23 Switzerland www.cern.ch/i t Some Hints for “Best Practice” Regarding VO Boxes Running Critical Services and Real Use-cases.

CERN IT Department CH-1211 Genève 23 Switzerland t Some Hints for “Best Practice” Regarding VO Boxes Running Critical Services and Real Use-cases.
Installing and maintaining clusters of FreeBSD servers using PXE and Rsync Cor Bosman XS4ALL

Installing and maintaining clusters of FreeBSD servers using PXE and Rsync Cor Bosman XS4ALL
ATIF MEHMOOD MALIK KASHIF SIDDIQUE Improving dependability of Cloud Computing with Fault Tolerance and High Availability.

ATIF MEHMOOD MALIK KASHIF SIDDIQUE Improving dependability of Cloud Computing with Fault Tolerance and High Availability.
Internet Service Provisioning Phase - I August 29, 2003 TSPT Web:

Internet Service Provisioning Phase - I August 29, 2003 TSPT Web:
Module 10 Configuring and Managing Storage Technologies.

Module 10 Configuring and Managing Storage Technologies.
Module 13: Configuring Availability of Network Resources and Content.

Module 13: Configuring Availability of Network Resources and Content.
INTRODUCTION TO CLOUD COMPUTING CS 595 LECTURE 7 2/23/2015.

INTRODUCTION TO CLOUD COMPUTING CS 595 LECTURE 7 2/23/2015.
D0 Run IIb Review 15-Jul-2004 Run IIb DAQ / Online status Stu Fuess Fermilab.

D0 Run IIb Review 15-Jul-2004 Run IIb DAQ / Online status Stu Fuess Fermilab.
October,18-22 2004 Scientific Linux INFN/Trieste B.Gobbo – Compass R.Gomezel - T.Macorini - L.Strizzolo INFN - Trieste.

October, Scientific Linux INFN/Trieste B.Gobbo – Compass R.Gomezel - T.Macorini - L.Strizzolo INFN - Trieste.
Ceph Storage in OpenStack Part 2 openstack-ch, 6.12.2013

Ceph Storage in OpenStack Part 2 openstack-ch,
Internet Engineering Course Network Design. Internet Engineering Course; Sharif University of Technology Contents Define and analyse an organization network.

Internet Engineering Course Network Design. Internet Engineering Course; Sharif University of Technology Contents Define and analyse an organization network.
+ discussion in Software WG: Monte Carlo production on the Grid + discussion in TDAQ WG: Dedicated server for online services + experts meeting (Thusday.

+ discussion in Software WG: Monte Carlo production on the Grid + discussion in TDAQ WG: Dedicated server for online services + experts meeting (Thusday.

Similar presentations

Ads by Google