Presentation is loading. Please wait.

Presentation is loading. Please wait.

Pierre Charrue – BE/CO.  Preamble  The LHC Controls Infrastructure  External Dependencies  Redundancies  Control Room Power Loss  Conclusion 6 March.

Published byAvice Jones Modified over 9 years ago

Similar presentations

Presentation on theme: "Pierre Charrue – BE/CO.  Preamble  The LHC Controls Infrastructure  External Dependencies  Redundancies  Control Room Power Loss  Conclusion 6 March."— Presentation transcript:

1 Pierre Charrue – BE/CO

2  Preamble  The LHC Controls Infrastructure  External Dependencies  Redundancies  Control Room Power Loss  Conclusion 6 March 20092Pierre Charrue - BE/CO - LHC Risk Review

3  Preamble  The LHC Controls Infrastructure  External Dependencies  Redundancies  Control Room Power Loss  Conclusion 6 March 20093Pierre Charrue - BE/CO - LHC Risk Review

4  The Controls Infrastructure is designed to control the beams in the accelerators  It is not designed to protect the machine nor to ensure personnel safety  See Machine Protection or Access Infrastructures 6 March 20094Pierre Charrue - BE/CO - LHC Risk Review

5  Preamble  The LHC Controls Infrastructure  External Dependencies  Redundancies  Control Room Power Loss  Conclusion 6 March 20095Pierre Charrue - BE/CO - LHC Risk Review

6 6 March 2009Pierre Charrue - BE/CO - LHC Risk Review 6 The 3-tier architecture – Hardware Infrastructure – Software layers – Resource Tier – VME crates, PC GW & PLC dealing with high performance acquisitions and real-time processing – Database where all the setting and configuration of all LHC device exist – Server Tier – Application servers – Data Servers – File Servers – Central Timing – Client Tier – Interactive Consoles – Fixed Displays – GUI applications – Communication to the equipment goes through Controls Middleware CMW CTRL DB Business Layer Hardware Client tier Server tier Applications Layer Resource tier CMW

7  Since January 2006, the accelerator operation is done from the CERN Control Centre (CCC) on the Prévessin site  The CCC hosts around 100 consoles and around 300 screens  The CCR is the rack room next to the CCC. It hosts more than 400 servers 6 March 20097Pierre Charrue - BE/CO - LHC Risk Review

8  Preamble  The LHC Controls Infrastructure  External Dependencies  Redundancies  Control Room Power Loss  Conclusion 6 March 20098Pierre Charrue - BE/CO - LHC Risk Review

9 HARDWARE  Electricity  Cooling and Ventilation  Network  Oracle servers in IT SOFTWARE  Oracle  IT Authentication  Technical Network/General Purpose Network 6 March 20099Pierre Charrue - BE/CO - LHC Risk Review

10  All Linux servers are HP Proliants with dual power supplies  They are cabled to two separate 230V UPS sources  High power consumption will consume UPS batteries rapidly  1 hour maximum autonomy  Each Proliant consumes an average of 250W 6 March 200910Pierre Charrue - BE/CO - LHC Risk Review

11  Feb 2009: upgrade of air flow and cooling circuits in CCR  CCR vulnerability to Cooling problems has been resolved  In the event of loss of refrigeration, the CCR will overheat very quickly  Monitoring with temperature sensors and alarms in place to ensure rapid intervention by TI operators  The CCR cooling state is monitored by the Technical Infrastructure Monitoring (TIM) with views which can show trends over the last 2 weeks: 6 March 2009Pierre Charrue - BE/CO - LHC Risk Review11

12 6 March 2009Pierre Charrue - BE/CO - LHC Risk Review12 Very reliable network topology Redundant network routes Redundant Power Supply in routers and switches

13 Controls Configuration LSA Settings E-Logbook CESAR HWC Measurements Measurements Logging CTRL 2 x quad-core 2.8GHz CPU 8GB RAM Clustered NAS shelf 14x300GB SATA disks 11.4TB usable Additional server for testing: Standby database for LSA Clustered NAS shelf 14x146GB FC disks Service Availability – New infrastructure has high-redundancy for high-availability – Deploy each service on a dedicated Oracle Real Application Cluster – The use of a standby database will be investigated objective of reaching 100% uptime for LSA – The Logging infrastructure can sustain a 24h un-attainability of the DB – Keep data in local buffers – A ‘golden’ level support with intervention in 24h – Secure database account granting specific privileges to dedicated db accounts 13 LHC Controls infrastructure is highly DATA centric – All accelerator parameters & settings are stored in a DB located in B513 6 March 2009Pierre Charrue - BE/CO - LHC Risk Review

14  Needed online for Role Based Access Control (RBAC) and various Web Pages used by operators  Not used for operational logins on Linux  Windows caches recently used passwords 6 March 200914Pierre Charrue - BE/CO - LHC Risk Review

15  Preamble  The LHC Controls Infrastructure  External Dependencies  Redundancies  Control Room Power Loss  Conclusion 6 March 200915Pierre Charrue - BE/CO - LHC Risk Review

16  Remote Reboot and Terminal Server functionality built in  Excellent power supply and fan redundancy, partial CPU redundancy, ECC memory  Excellent disk redundancy  Automatic warnings in case of a disk failure  Several backup methods :  ADSM towards IT backup  Daily or weekly rsync towards a storage place in Meyrin ▪ Data will be recovered in case of catastrophic failure in CCR  We are able to restore a BackEnd with destroyed disks in a few hours  2 nd PostMortem server installed on the Meyrin site 6 March 200916Pierre Charrue - BE/CO - LHC Risk Review

17  VMEs  Can survive limited fan failure  Some VME systems with redundant power supplies  Otherwise no additional redundancy  Remote reboot and terminal server vital  PLCs  Generally very reliable  Rarely have remote reboot because of previous point ▪ some LHC Alcove PLCs have a remote reboot 6 March 200917Pierre Charrue - BE/CO - LHC Risk Review

18  LHC central timing  Master, Slave, Gateway using reflective memory, and hot standby switch  Timing is distributed over dedicated network to timing receivers CTRx in front ends 6 March 200918Pierre Charrue - BE/CO - LHC Risk Review

19 Isolation of Technical Network from external access  CNIC initiative to separate the General Purpose Network from the Technical Network  NO dependences of resources from the GPN for operating the machines  Very few hosts from the GPN allowed to access the TN  Regular Technical Network security scans 6 March 2009Pierre Charrue - BE/CO - LHC Risk Review19

20  High level tools to diagnose and monitor the controls infrastructure (DIAMON and LASER)  Easy to use first line diagnostics and tool to solve problems or help to decide about responsibilities for first line intervention  Protecting the device access : RBAC initiative  Device access are authorized upon RULES applied to ROLES given to specific USERS  Protecting the Machine Critical Settings (e.g. BLM threshold) ▪ Can only be changed by authorized person ▪ Uses RBAC for Authentication & Authorization ▪ Signs the data with a unique signature to ensure critical parameters have not been tampered since last update 6 March 2009Pierre Charrue - BE/CO - LHC Risk Review20 Navigation Tree Group View Monitoring Tests Details Repair tools

21  Preamble  The LHC Controls Infrastructure  External Dependencies  Redundancies  Control Room Power Loss  Conclusion 6 March 200921Pierre Charrue - BE/CO - LHC Risk Review

22  Power Loss in any LHC site:  No access to equipment from this site ▪ Machine protection or OP will take action  Power Loss in the CCC/CCR  CCC can sustain 1 hour on UPS  CCR Cooling will be a problem  Some CCR servers will still be up if the 2 nd power source is not affected  10 minutes on UPS for EOD1  1 hour on UPS for EOD2 and EOD9 6 March 200922Pierre Charrue - BE/CO - LHC Risk Review

23 6 March 2009Pierre Charrue - BE/CO - LHC Risk Review23

24  The LHC machine itself is protected via a complete Machine Protection System, mainly based of hardware :  Beam Interlock System  Safe Machine Parameters system  Fast Magnet current Change Monitors  Powering Interlock System  Warm Magnet Interlock System  Software Interlock System  All devices in the PostMortem chain are protected for at least 15 minutes  In addition, the source FrontEnds can hold the data locally in case the network is the cause  The CCR servers for PostMortem are on UPS for one hour  A 2 nd PostMortem mirror server is located on the Meyrin site  The archives are stored on RAID servers, with 2 levels of backups, one on a backup server maintained by BE/CO on the Meyrin site, and one ADSM backup server maintained by IT in building 513. 6 March 2009Pierre Charrue - BE/CO - LHC Risk Review24

25  Preamble  The LHC Controls Infrastructure  External Dependencies  Redundancies  Control Room Power Loss  Conclusion 6 March 200925Pierre Charrue - BE/CO - LHC Risk Review

26  High dependence on electricity distribution, network, cooling and ventilation, databases  Emphasis on the Controls Infrastructure on  Redundancy  Remote monitoring and diagnostic  Remote reset  Quick recovery in case of major problem  The controls infrastructure can sustain Power loss between 10’ and 60’  Special care is taken to secure PostMortem data (collection and archives) 6 March 200926Pierre Charrue - BE/CO - LHC Risk Review

Download ppt "Pierre Charrue – BE/CO.  Preamble  The LHC Controls Infrastructure  External Dependencies  Redundancies  Control Room Power Loss  Conclusion 6 March."

Similar presentations

MUNIS Platform Migration Project WELCOME. Agenda Introductions Tyler Cloud Overview Munis New Features Questions.

MUNIS Platform Migration Project WELCOME. Agenda Introductions Tyler Cloud Overview Munis New Features Questions.
André Augustinus 16 June 2003 DCS Workshop Safety.

André Augustinus 16 June 2003 DCS Workshop Safety.
PowerEdge M-Series CMC Management

PowerEdge M-Series CMC Management
André Augustinus ALICE Detector Control System  ALICE DCS is responsible for safe, stable and efficient operation of the experiment  Central monitoring.

André Augustinus ALICE Detector Control System  ALICE DCS is responsible for safe, stable and efficient operation of the experiment  Central monitoring.
June 23rd, 2009Inflectra Proprietary InformationPage: 1 SpiraTest/Plan/Team Deployment Considerations How to deploy for high-availability and strategies.

June 23rd, 2009Inflectra Proprietary InformationPage: 1 SpiraTest/Plan/Team Deployment Considerations How to deploy for high-availability and strategies.
Supervision of Production Computers in ALICE Peter Chochula for the ALICE DCS team.

Supervision of Production Computers in ALICE Peter Chochula for the ALICE DCS team.
Network Management Overview IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.

Network Management Overview IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.
BE-CO work for the TS 7 - 10 Nov 8 Nov 11P.Charrue - BE/CO - LBOC1.

BE-CO work for the TS Nov 8 Nov 11P.Charrue - BE/CO - LBOC1.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.
Use of Thin Clients in an Industrial Environment Foxboro Southeast User’s Group Birmingham, Al February 10-11, 2009 Walter Conner Senior Plant Engineer.

Use of Thin Clients in an Industrial Environment Foxboro Southeast User’s Group Birmingham, Al February 10-11, 2009 Walter Conner Senior Plant Engineer.
Industrial Control Engineering Industrial Controls in the Injectors: You (will) know that they are here Hervé Milcent On behalf of EN/ICE IEFC workshop.

Industrial Control Engineering Industrial Controls in the Injectors: "You (will) know that they are here" Hervé Milcent On behalf of EN/ICE IEFC workshop.
Virtual Network Servers. What is a Server? 1. A software application that provides a specific one or more services to other computers  Example: Apache.

Virtual Network Servers. What is a Server? 1. A software application that provides a specific one or more services to other computers  Example: Apache.
Overview of Data Management solutions for the Control and Operation of the CERN Accelerators Database Futures Workshop, CERN 06-07 June 2011 Zory Zaharieva,

Overview of Data Management solutions for the Control and Operation of the CERN Accelerators Database Futures Workshop, CERN June 2011 Zory Zaharieva,
controls Middleware – OVERVIEW & architecture 26th June 2013

controls Middleware – OVERVIEW & architecture 26th June 2013
CERN IT Department CH-1211 Genève 23 Switzerland www.cern.ch/i t Next generation of virtual infrastructure with Hyper-V Michal Kwiatek, Juraj Sucik, Rafal.

CERN IT Department CH-1211 Genève 23 Switzerland t Next generation of virtual infrastructure with Hyper-V Michal Kwiatek, Juraj Sucik, Rafal.
E. Hatziangeli – LHC Beam Commissioning meeting - 17th March 2009.

E. Hatziangeli – LHC Beam Commissioning meeting - 17th March 2009.
Windows Server MIS 424 Professor Sandvig. Overview Role of servers Performance Requirements Server Hardware Software Windows Server IIS.

Windows Server MIS 424 Professor Sandvig. Overview Role of servers Performance Requirements Server Hardware Software Windows Server IIS.
5 September 2015 Culrur-exp project CULTURe EXchange Platform (CULTUR-EXP) project kick-off meeting, 26-27 August 2013, Tbilisi, Georgia Joint Operational.

5 September 2015 Culrur-exp project CULTURe EXchange Platform (CULTUR-EXP) project kick-off meeting, August 2013, Tbilisi, Georgia Joint Operational.
Module 13: Configuring Availability of Network Resources and Content.

Module 13: Configuring Availability of Network Resources and Content.
15 Maintaining a Web Site Section 15.1 Identify Webmastering tasks Identify Web server maintenance techniques Describe the importance of backups Section.

15 Maintaining a Web Site Section 15.1 Identify Webmastering tasks Identify Web server maintenance techniques Describe the importance of backups Section.

Similar presentations

Ads by Google