CN112925192A - Method for improving operation reliability of multi-service industrial control system - Google Patents
Method for improving operation reliability of multi-service industrial control system Download PDFInfo
- Publication number
- CN112925192A CN112925192A CN202110082780.9A CN202110082780A CN112925192A CN 112925192 A CN112925192 A CN 112925192A CN 202110082780 A CN202110082780 A CN 202110082780A CN 112925192 A CN112925192 A CN 112925192A
- Authority
- CN
- China
- Prior art keywords
- service
- industrial control
- gateways
- data
- group
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 14
- 230000005540 biological transmission Effects 0.000 claims abstract description 9
- 238000002955 isolation Methods 0.000 claims abstract description 4
- 238000004891 communication Methods 0.000 claims description 8
- 238000004519 manufacturing process Methods 0.000 claims description 5
- 238000013475 authorization Methods 0.000 claims description 3
- 238000012806 monitoring device Methods 0.000 claims description 3
- 238000007726 management method Methods 0.000 description 5
- 238000005516 engineering process Methods 0.000 description 4
- 238000012545 processing Methods 0.000 description 4
- 238000011161 development Methods 0.000 description 2
- 230000010354 integration Effects 0.000 description 2
- 230000004075 alteration Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 238000013480 data collection Methods 0.000 description 1
- 238000013523 data management Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000001737 promoting effect Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B9/00—Safety arrangements
- G05B9/02—Safety arrangements electric
- G05B9/03—Safety arrangements electric with multiple-channel loop, i.e. redundant control systems
Landscapes
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Engineering & Computer Science (AREA)
- Automation & Control Theory (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention provides a method for improving the operation reliability of a multi-service industrial control system, wherein an industrial control system layer comprises a plurality of independent service gateways and an industrial control subsystem connected with the service gateways or equipment in the industrial control subsystem, and the equipment and the service gateways are in the same two-layer network so as to ensure the timeliness of data transmission of a single service industrial control subsystem governed by the independent service gateways. A plurality of service switch sets and system switch sets are arranged between the industrial control cloud platform and the service gateways, the service switch sets are divided according to specific service types, and each service switch set is independently connected with the corresponding service gateway and is logically isolated; the system switch group comprises a data backup group and an extension group. Logic isolation is formed, direct access cannot be performed among all service gateways, data transmission paths are optimized and distributed, and stable and rapid operation of the system is guaranteed.
Description
Technical Field
The invention relates to the field of industrial control systems, in particular to a method for improving the operation reliability of a multi-service industrial control system.
Background
Under the new situation of the national and industrial innovation and development of new tasks and the rapid development of network security information technology, the deep integration and high integration of industrialization and informatization need to be continuously promoted in factories. Especially, the factory technical improvement enters a substantial construction stage, companies and factories require to increase the application of new technology to industrial control systems, informatization and automation are highly integrated, the network security problem of the existing server architecture is obvious, and especially, a newly-built industrial control system must meet the requirements of network security, third-level security and key infrastructure.
The existing industrial control system server continues to use old technology for many years, has poor operation reliability, is difficult to ensure stable operation of production equipment, influences production operation and product quality, and becomes a bottleneck for strongly promoting quality and improving special actions of factories.
Based on this, when setting up the network architecture among the prior art, directly dispose the gateway to the platform in, form cross access between the data, be unfavorable for timely transmission and the collection of data to and the security is low, and data transmission route is redundant.
Disclosure of Invention
Aiming at the technical problems in the prior art, the invention provides a method for improving the operation reliability of a multi-service industrial control system, which optimizes and recombines a network architecture, logically isolates service gateways, cannot directly access the service gateways, optimizes and shunts a data transmission path and ensures the stable and rapid operation of the system.
The technical scheme for solving the technical problems is as follows: a method for improving the operation reliability of a multi-service industrial control system is provided, which is configured with a three-layer network architecture and comprises an industrial control cloud platform, a service data layer and an industrial control system layer.
The industrial control cloud platform comprises a plurality of gigabit storage switches, a plurality of servers and platform management software which are sequentially connected.
The industrial control system layer comprises a plurality of independent service gateways and an industrial control subsystem connected with the service gateways or equipment in the industrial control subsystem, and the equipment and the service gateways are in the same two-layer network so as to ensure the timeliness of data transmission of a single service industrial control subsystem governed by the independent service gateways.
A plurality of service switch sets and system switch sets are arranged between the industrial control cloud platform and the service gateways, the service switch sets are divided according to specific service types, and each service switch set is independently connected with the corresponding service gateway and is logically isolated; the system switch group comprises a data backup group and an extension group.
The service data layer comprises an industrial control boundary router, a central machine room router and a machine room gateway, the industrial control boundary router is arranged between the central machine room router and the service gateway, and the machine room gateway is in communication connection with the system switch set.
Preferably, at least 3 servers and at least 2 million storage switches are arranged in the industrial control cloud platform.
Preferably, the service switch group and the system switch group are respectively composed of a plurality of gigabit switches.
Preferably, the service gateways which belong to different service types after the logic isolation cannot directly access data; and the data access can be carried out only by forwarding and obtaining authorization through the industrial control boundary router connected with the central computer room router.
Preferably, the extension group is externally connected with the extension device, and is used for performing centralized management on data of the extension device and performing communication with the data backup group through the machine room gateway to realize data backup.
Preferably, the expansion device comprises a monitoring device, an alarm device and a production device.
The invention has the beneficial effects that: the invention provides a method for improving the operation reliability of a multi-service industrial control system, which optimizes and recombines a network architecture, logically isolates service gateways, cannot directly access the service gateways, optimizes and shunts a data transmission path and ensures the stable and rapid operation of the system.
Drawings
Fig. 1 is a schematic block diagram of the present invention.
Detailed Description
Reference will now be made in detail to embodiments of the present invention, examples of which are illustrated in the accompanying drawings, wherein like or similar reference numerals refer to the same or similar elements or elements having the same or similar function throughout. The embodiments described below with reference to the accompanying drawings are illustrative only for the purpose of explaining the present invention, and are not to be construed as limiting the present invention.
In the description of the present invention, it is to be understood that the terms "longitudinal", "lateral", "upper", "lower", "front", "rear", "left", "right", "vertical", "horizontal", "top", "bottom", "inner", "outer", and the like, indicate orientations or positional relationships based on those shown in the drawings, and are used merely for convenience of description and for simplicity of description, and do not indicate or imply that the referenced devices or elements must have a particular orientation, be constructed in a particular orientation, and be operated, and thus, are not to be construed as limiting the present invention.
In the description of the present invention, unless otherwise specified and limited, it is to be noted that the terms "mounted," "connected," and "connected" are to be interpreted broadly, and may be, for example, a mechanical connection or an electrical connection, a communication between two elements, a direct connection, or an indirect connection via an intermediate medium, and specific meanings of the terms may be understood by those skilled in the art according to specific situations.
As shown in fig. 1, the present embodiment discloses a method for improving the operational reliability of a multi-service industrial control system, which configures a three-layer network architecture including an industrial control cloud platform, a service data layer, and an industrial control system layer.
The industrial control cloud platform comprises a plurality of gigabit storage switches, a plurality of servers and platform management software which are sequentially connected.
The industrial control system layer comprises a plurality of independent service gateways and an industrial control subsystem connected with the service gateways or equipment in the industrial control subsystem, and the equipment and the service gateways are in the same two-layer network so as to ensure the timeliness of data transmission of a single service industrial control subsystem governed by the independent service gateways.
A plurality of service switch sets and system switch sets are arranged between the industrial control cloud platform and the service gateways, the service switch sets are divided according to specific service types, and each service switch set is independently connected with the corresponding service gateway and is logically isolated; the system switch group comprises a data backup group and an extension group.
The service data layer comprises an industrial control boundary router, a central machine room router and a machine room gateway, the industrial control boundary router is arranged between the central machine room router and the service gateway, and the machine room gateway is in communication connection with the system switch set.
Preferably, at least 3 servers and at least 2 million storage switches are arranged in the industrial control cloud platform.
Preferably, the service switch group and the system switch group are respectively composed of a plurality of gigabit switches.
Preferably, the service gateways which belong to different service types after the logic isolation cannot directly access data; and the data access can be carried out only by forwarding and obtaining authorization through the industrial control boundary router connected with the central computer room router.
Preferably, the extension group is externally connected with the extension device, and is used for performing centralized management on data of the extension device and performing communication with the data backup group through the machine room gateway to realize data backup.
Preferably, the expansion device comprises a monitoring device, an alarm device and a production device.
In the embodiment, by optimizing a network architecture, firstly, an industrial control cloud platform structure is optimized and is composed of a plurality of gigabit storage switches, a plurality of servers and platform management software, wherein the gigabit storage switches, the servers and the platform management software are sequentially connected to form a communication link; the system comprises an industrial control cloud platform, an exchange unit, a system database and a data backup and management unit, wherein the exchange unit is configured under the industrial control cloud platform and comprises a service exchange unit and a system exchange unit, the service exchange unit is divided according to the actual requirements of the industrial control environment and is used for specifically and individually managing each service plate, the system exchange unit is mainly used for managing the system database, and specifically, the system data backup and the system management are carried out by setting a data backup group and a system management group, and the external equipment of the system is managed and backed up at the same time. Furthermore, the service switch group is individually configured with respective service gateways, and the independent service gateways are used for centralized processing of data of each service plate, so that the phenomenon that data cross access is caused by centralized processing of data generated by all service plates or subsystems through one service gateway in the traditional technology is eliminated, data collection and management are inconvenient, and meanwhile, the data processing capacity and the processing speed of the system are reduced. Therefore, by arranging a plurality of service gateways, each subsystem or service plate is isolated, so that the service gateways cannot directly access respective data through the same gateway.
In the description herein, references to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., mean that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the invention. In this specification, the schematic representations of the terms used above do not necessarily refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples.
While embodiments of the invention have been shown and described, it will be understood by those of ordinary skill in the art that: various changes, modifications, substitutions and alterations can be made to these embodiments without departing from the principles and spirit of the invention, the scope of which is defined by the claims and their equivalents.
Claims (6)
1. A method for improving the operational reliability of a multi-service industrial control system is characterized in that a three-layer network architecture is configured, and the three-layer network architecture comprises an industrial control cloud platform, a service data layer and an industrial control system layer;
the industrial control cloud platform comprises a plurality of gigabit storage switches, a plurality of servers and platform management software which are sequentially connected;
the industrial control system layer comprises a plurality of independent service gateways and an industrial control subsystem connected with the service gateways or equipment in the industrial control subsystem, and the equipment and the service gateways are in the same two-layer network so as to ensure the timeliness of data transmission of a single service industrial control subsystem governed by the independent service gateways;
a plurality of service switch sets and system switch sets are arranged between the industrial control cloud platform and the service gateways, the service switch sets are divided according to specific service types, and each service switch set is independently connected with the corresponding service gateway and is logically isolated; the system switch group comprises a data backup group and an extension group;
the service data layer comprises an industrial control boundary router, a central machine room router and a machine room gateway, the industrial control boundary router is arranged between the central machine room router and the service gateway, and the machine room gateway is in communication connection with the system switch set.
2. The method of claim 1, wherein the industrial cloud platform comprises at least 3 servers and at least 2 terabyte storage switches.
3. The method of claim 1, wherein the service switch group and the system switch group are respectively composed of a plurality of gigabit switches.
4. The method according to claim 1, wherein the service gateways belonging to different service types after logical isolation cannot directly access data; and the data access can be carried out only by forwarding and obtaining authorization through the industrial control boundary router connected with the central computer room router.
5. The method according to claim 1, wherein the extension group is externally connected to an extension device, and is configured to perform centralized management on data of the extension device, and perform communication with the data backup group through a machine room gateway to implement data backup.
6. The method for improving the operational reliability of the multi-service industrial control system according to claim 5, wherein the extension device comprises a monitoring device, an alarm device and a production device.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110082780.9A CN112925192A (en) | 2021-01-21 | 2021-01-21 | Method for improving operation reliability of multi-service industrial control system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110082780.9A CN112925192A (en) | 2021-01-21 | 2021-01-21 | Method for improving operation reliability of multi-service industrial control system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112925192A true CN112925192A (en) | 2021-06-08 |
Family
ID=76164151
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110082780.9A Pending CN112925192A (en) | 2021-01-21 | 2021-01-21 | Method for improving operation reliability of multi-service industrial control system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112925192A (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105893629A (en) * | 2016-05-25 | 2016-08-24 | 江苏斯因信息科技有限公司 | Energy monitoring system and software based on Internet of Things and cloud computing |
| CN107453925A (en) * | 2017-09-21 | 2017-12-08 | 山东康威通信技术股份有限公司 | Remote firmware updating method and cloud platform based on multistage communication platform |
| CN109507975A (en) * | 2018-12-28 | 2019-03-22 | 飞马智科信息技术股份有限公司 | A kind of acquisition network system of industry big data |
| CN109547239A (en) * | 2018-11-14 | 2019-03-29 | 赵显涛 | Strange land cloud data center management system based on three-layer network framework |
| CN109660459A (en) * | 2017-10-10 | 2019-04-19 | 中国移动通信集团广东有限公司 | A kind of physical gateway and its method for being multiplexed IP address |
| CN110213175A (en) * | 2019-06-08 | 2019-09-06 | 西安电子科技大学 | A kind of intelligent managing and control system and management-control method towards knowledge definition network |
| CN111181865A (en) * | 2019-12-11 | 2020-05-19 | 天翼电子商务有限公司 | Traffic distribution method and system based on service, storage medium and terminal |
-
2021
- 2021-01-21 CN CN202110082780.9A patent/CN112925192A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105893629A (en) * | 2016-05-25 | 2016-08-24 | 江苏斯因信息科技有限公司 | Energy monitoring system and software based on Internet of Things and cloud computing |
| CN107453925A (en) * | 2017-09-21 | 2017-12-08 | 山东康威通信技术股份有限公司 | Remote firmware updating method and cloud platform based on multistage communication platform |
| CN109660459A (en) * | 2017-10-10 | 2019-04-19 | 中国移动通信集团广东有限公司 | A kind of physical gateway and its method for being multiplexed IP address |
| CN109547239A (en) * | 2018-11-14 | 2019-03-29 | 赵显涛 | Strange land cloud data center management system based on three-layer network framework |
| CN109507975A (en) * | 2018-12-28 | 2019-03-22 | 飞马智科信息技术股份有限公司 | A kind of acquisition network system of industry big data |
| CN110213175A (en) * | 2019-06-08 | 2019-09-06 | 西安电子科技大学 | A kind of intelligent managing and control system and management-control method towards knowledge definition network |
| CN111181865A (en) * | 2019-12-11 | 2020-05-19 | 天翼电子商务有限公司 | Traffic distribution method and system based on service, storage medium and terminal |
Non-Patent Citations (2)
| Title |
|---|
| 孙頔: "校园网云数据中心架构研究", 网络信息工程, 31 December 2020 (2020-12-31), pages 72 - 75 * |
| 李永忠等: "终身学习云视课堂建设的理论与实践", vol. 1, 31 May 2016, 西安电子科技大学出版社, pages: 341 - 345 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN206537292U (en) | Carry urban track traffic dispatch control and run the cloud platform of automated system | |
| CN101027873B (en) | Systems and methods for network management | |
| CN100446495C (en) | Method and system for sharing connection dynamically | |
| CN102215123B (en) | Multi-ring-network-topology-structure-based large-scale trunking system | |
| CN102204188A (en) | Routing computation method and host node device in virtual network element | |
| CN112003716A (en) | Data center dual-activity implementation method | |
| CN201319224Y (en) | Simulation system for subway signal fault simulation rehearsal | |
| WO2019228400A1 (en) | Data processing system and method | |
| CN110336855B (en) | Medical cloud data system | |
| CN107395739A (en) | A kind of data exchange shared platform | |
| CN101022367A (en) | Network management method and system | |
| CN101873237A (en) | Method and system for dynamically maintaining member servers in cluster | |
| CN108769215B (en) | Transportation information integration system | |
| CN112788798A (en) | Master-slave negotiation multi-gateway intelligent Zigbee network system | |
| CN101594263B (en) | System for monitoring network communication data packets | |
| CN108011699A (en) | reactor computer monitoring system network architecture method | |
| CN114050858B (en) | Double-layer hierarchical giant constellation fault management and response method | |
| CN112925192A (en) | Method for improving operation reliability of multi-service industrial control system | |
| CN103246262B (en) | Comprehensive service system for network data analysis | |
| CN110825057A (en) | Method for improving stability and safety of plant-level information monitoring system of power plant | |
| CN101997741A (en) | Network monitoring method and system for rail transit equipment state | |
| CN113055640A (en) | Equipment management method and device in monitoring system | |
| CN109933568A (en) | A kind of industry big data platform system and its querying method | |
| CN114448984B (en) | Adaptation method of cross-platform universal SDN controller | |
| CN101572627A (en) | Management method in integrating network and system thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |