Upload
others
View
5
Download
0
Embed Size (px)
Citation preview
1
Presenter Name
Title, Cisco
2
制造业分类
01 农副食品加工业
02 食品制造业
03 饮料制造业
04 烟草制品业
05 纺织业
06 纺织服装、鞋、帽制造业
07 皮革、毛皮、羽毛(绒)及其制品业
08 木材加工及木、竹、藤、棕、草制品业
09 家具制造业
10 造纸及纸制品业
11 印刷业和记录媒介的复制
12 文教体育用品制造业
13 石油加工、炼焦及核燃料加工业
14 化学原料及化学制品制造业
15 医药制造业
16 化学纤维制造业
17 橡胶制品业
18 塑料制品业
19 非金属矿物制品业
20 黑色金属冶炼及压延加工业
21 有色金属冶炼及压延加工业
22 金属制品业
23 通用设备制造业
24 专用设备制造业
25 交通运输设备制造业
26 电气机械及器材制造业
27 通信设备、计算机及其他电子设备制造业
28 仪器仪表及文化、办公用机械制造业
29 工艺品及其他制造业
30 废弃资源和废旧材料回收加工业
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
工业网络的现状与发展趋势
思科工业网络解决方案简介
如何善用优势赢单
成功案例分析
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 4 © 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 4
工业网络的现状与发展趋势
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
•铁路
•机场
•市政工程
•隧道
•地铁
•造船
•等等……..
交通自动化
•化工
•冶金
•发电
•输配电
•水/污水处理
•石油&天然气提炼
•矿产
•管线
•制浆和造纸
•等等……..
过程自动化
•输送技术
•食品和饮料
•食品包装
•机械加工
•印刷机械
•汽车工业
•半导体
•楼宇自动化
•等等……...
工厂自动化
自动化领域
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
M2.0 Integration Collaboration Agility
Information Revolution
M1.0 Speed Scale Silo
Industrial Revolution
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
Plant Operations Transformation
Source: AMR, Industry Week, Cisco Analysis
Restricted and
Isolated
Static Environment
“Solid State”
Dynamic, Integrated
Mobile, Real-Time
Connected
Environment
“Liquid State”
Traditional
Plant
Plant
of the Future
Sensor
Enabled
Manufacturing
IT and
Control
System
Flexibility
Mobile and
Remote
Workers
Enhanced
Security and
Personnel
Tracking
Integrated
Business and
Plant Data
…Multi-Site
Real-Time
Asset
Tracking,
Monitoring,
and
Notification
Collaborative
Tools and
Processes
Real Time
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
Level 0:
Devices
Level 4:
ERP/MPRII/…
Level 3:
MES system
Level 2:
HMI / 控制台
Level 1:
I/O ,Controller
工业以太网Ethernet/IP
DeviceNet
ControlNet
Ethernet/IP
现场总线
ControlNet
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 9
控制器(PLC) 人机界面 (HMI) 工控机
电源监控器
传感器
阀门
主机控制器
拖动装置
照明和控制
马达
分布式控制系统 I/O 单元
PLC-5
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 10
第0级:现场级
第3级: 管理级
第4级: 企业级 ERP
SCADA/DCS/MES/SIS…
PLC/DCS
Sensor/Actuator (I/O)
TRANSMITTER
PLC
VALVE SENSOR
HMI / IPC
TRANSMITTER PENDENT
BUTTONS
DRIVES &
MOTORS
第1-2级: 过程测量和控制级
工业以太网基本覆盖
工业以太网逐步推进
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 11
Type 5 - FFB HSE
Type 6 - SwiftNet
Type 7 - WorldFIP
Type 8 - Interbus-S
Type 10 - Profinet
Type 1 - FF H1
Type 2 - ControlNet
EtherNet/IP
Type 3 - Profibus
Type 4 - P-Net
IEC 61158 工业现场总线标准:
以太网相关的工业网络协议:
•MODBUS TCP使用标准以太网设备
•EPA使用标准以太网设备
•Ethernet POWERLINK使用标准以太网设备
•ETHERCAT使用标准以太网设备
•Ethernet/IP使用标准以太网设备(Rockwell)
•Profinet(NRT/SRT)使用标准以太网设备(西门子)
•Profinet(IRT)使用非标准以太网设备(西门子)
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 12
Ethernet/Industrial Protocol Or Ethernet/IP (EIP) Specifies How CIP Communication Packets Can be Transported Over Standard Ethernet and TCP/IP Technology.
• CIP: Control traffic (a.k.a. Implicit traffic)
I/O control, drive control, Produced/Consumed tags
Uses UDP protocol (multi-cast and uni-cast)
• CIP: Information traffic (a.k.a. Explicit traffic)
HMI, MSG’s, Program upload/download
Uses TCP protocol
• Other common traffic
HTTP, Email, SNMP, etc.
Ethernet/IP Traffic Types in a
Control Environment
Advantages of EtherNet/IP
Based upon standard Ethernet and IP Protocol suite
Established—150+ registered vendors
Future proof—Runs on unmodified standard Ethernet
Supported—All EIP products require conformance testing
FTP HTTP OPC SNMP BOOTP
DHCP
IP
IEEE 802.3 Ethernet
OSPF ICMP IGMP
RARP ARP
Explicit
Messaging
Real-Time
I/O Control
UDP
CIP
TCP
Layer 2
Layer 3
Layers 5–7
Layer 4
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 13
CIP包含了各种工业实时控制需要的服务和行规 (Profiles);
CIP将网络上数据按照有实时控制要求和没有实时控制要求以不同的优先
等级区别对待。
CIP Message Routing, Connection Management
CIP Data Management Services Explicit Messages, I/O Messages
CIP Application Layer Application Object Library
Semi- conductor
Valves Drives Robots Other
通用工业协议CIP (Common Industrial Protocol)
设备应
用描述
App
Profiles
Layer 5-7 应用层
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 14
Standard to integrate I/O control, device configuration and data collection in automation and control systems
Supports three network protocols. EtherNet/IP is based on Ethernet, IP and TCP/UDP
Supported by the Open Device Vendor Association(ODVA)
Key communication includes:
Implicit messaging—Real-time I/O data, functional safety data, motion control data, often UDP multicast
Explicit messaging—Configuration, diagnostics, data collection, based on TCP unicast messaging
ODVA: www.odva.org
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 15
OSPF
• 通过UDP 协议传送I/O控制数据,将UDP报文映射到IP组播传送,实现高效I/O交换,有力支持了CIP的生产者/消费者模式。
CIP显式报文(配置、采集、诊断)利用TCP的流量控制和点对点特性
ICMP IGMP IGRP
IEEE 802.3 Ethernet
UDP
应用
数据链路
物理
网络
传输
ARP
FTP HTTP BOOTP DHCP OPC SNMP
TCP
IP
RARP
TCP
CIP
IP
UDP
CIP 显式报文 CIP 隐式报文 (I/O)
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 16
Highly Secure Integration With Corporate Networks, and Integration with Profinet-Based Devices
• PROFINET v2 certification, with PROFINET conformance class B compliance
• Cyclic data exchange between Profinet enabled programmable logic controllers, IO devices, and other mMotion controllers
• Support of ProfiSafe (Safety) applications with wire-speed switching
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 17
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 17
思科工业网络解决方案简介
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 18
EtherNet/IP (Industrial Protocols)
Real–Time Control
Fast Convergence
Traffic Segmentation and Management
Ease of Use
Site Operations and Control
Multi-Service Networks
Network and Security Management
Routing
Application and Data share
Access Control
Threat Protection
Gbps Link for Failover
Detection
Firewall (Active)
Firewall (Standby)
FactoryTalk Application
Servers
Cisco ASA 5500
Cisco Catalyst Switch
Network Services
Cisco Catalyst 6500/4500
Cisco Cat. 3750 StackWise
Switch Stack
Patch Management Terminal Services Application Mirror
AV Server
Cell/Area #1 (Redundant Star Topology)
Drive
Controller
HMI Distributed I/O
Controller
Drive Drive
HMI
Distributed I/O
HMI
Cell/Area #2 (Ring Topology)
Cell/Area #3 (Linear Topology)
Rockwell Automation Stratix 8000
Layer 2 Access Switch
Controller
Enterprise/IT Integration
Collaboration
Wireless
Application Optimization
Cell/Area Zone Levels 0–2 Layer 2 Access
Manufacturing Zone Level 3 Distribution and Core
Demilitarized Zone (DMZ) Firewalls
Enterprise Network Levels 4–5
ERP/SCM/BI/…
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 19
Built on Industry Standards
Technology Manufacturing
IEEE 802.3—standard
Ethernet, Precision
Time Protocol (PTP—
1588)
IETF—standard Internet
Protocol (IP)
Purdue Reference Model
for Control Hierarchy
ISA-95 Enterprise—
Control System Integration
ISA-99—Manufacturing
and Control Systems
Security
NIST 800-82 — Industrial
Control System Security
ODVA—Common
Industrial Protocol (CIP)
Profinet —
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 20
节点交换机 核心交换机
千兆接口数量: <=2
二层交换机,不能路由
千兆接口数量: >=2
三层交换机,能路由
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 21
Industry Leading Industrial Switching
Rugged Designed for industrial applications
Easy-to-Use Efficient deployment, management and
replacement
Secure Integrated security— for IT and industrial applications
Extended shock, vibration, humidity and thermal environments
Device Manger, Smart Ports, CIP-Support, IE SwapDrive, DHCP persistance
Layer 2-4 ACL’s, Port Security, User Based Authentication (802.1x/NAC), Secure CIP
IEEE 1588 PTP, ODVA CIP, VLAN, 802.xx, QoS, IGMP, Profinet, REP convergence
IT and Industrial Integration Leading Cisco switching capabilities and key features for industrial applications
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 22
Industry Leading Industrial Switching
4 & 8-端口基础模块 (10/100BaseT) – 双用途上联接口
• 10/100/1000BaseT or SFP
– 尺寸
• 6.0” w x 5.8” h x 4.4” d
8-端口电口扩展模块 (10/100BaseT)
8-端口光口扩展模块 (100FX多模) – 扩展选项:
• 1个或两个8端口电口扩展模块 • 1个8口的百兆扩展模块 • 1个8口的电口模块加1个8口的百兆电口模块
– 尺寸 • 3.5” w x 5.8 h x 4.4” d
扩展电源选项 – 扩展电源的电压输入:
• 85-265 VAC
• 88-300 VDC
– 尺寸: • 2” w x 5.8” h 4.4” d
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 23
IE-3010-16S-8PC 双千兆上联,16个100M SFP光口下联,8个100M电口下联,双交流/
直流电源,-40°C to 60°C
IE-3010-24TC 双千兆上联,24个100M电口下联,双交流/直流电源,-40°C to
60°C
后面板视图
1
2
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 24
Cisco IE 2000 Series are designed for low cost, low ports, and small sizes:
• 4, 8, or 16 10/100Base-T Ethernet ports fixed configurations with compact form factor
• 2x Gigabit Combo ports, SFP or RJ45 uplink
• Dual-input DC power supply, alarm relays, DIN rail mount
• One model with conformal coating
• Swappable SD flash card (for configuration storage), mini-USB connector, RS-232 console port
• Industrial environmental compliance and certifications
• Industrial partner applications: EtherNet/IP and PROFINET
LAN Lite Feature Set
LAN Base Feature Set 固定端口配置的2层交换机
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 25
弹性以太网协议 (REP)
•为以太网二层收敛专业设计的快速收敛协议
• Fast and predictable convergence
– Convergence time自愈时间: <50ms
– Fast failure notification even in large rings with high number of node (环节点数>130 nodes)
– Manual configuration for predictable failover behavior
• Limit the scope of Spanning-tree
– STP is deactivated on REP interfaces
• Supported on existing hardware
– IE3000/3010,ME series
快速收敛
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 26
Port Types and Status Description
REP port A port that is configured to run the REP protocol.
Edge port A port that terminates the segment
Alternate Port A port in the segment that blocks VLANs to prevent loops. The Alternate Port may be any port in the segment. There are two alternate ports per segment if VLAN load balancing is configured.
Open port A port in the segment forwarding on all VLANs
Segment
Edge Switch
Edge Ports
Segment
Edge Switch
Blocking Alternate Ports
Open Ports
Open Ports
Open Ports Open
Ports
Port Types 端口的类型
Port Status 端口的状态
快速收敛
REP Ports
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 27
•REP guarantees there is no connectivity between two edge ports on a segment.
•A REP segment is a chain of ports connected to each other and configured with a segment ID.
•When all interfaces in the segment are UP, the alternate port is blocking
• When a link or switch failure occurs on the segment, then blocked port goes forwarding
REP Segment
Blocked
Open
Alternate Port
Link Failure
Edge Port Edge Port
快速收敛
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 28
• Ring Convergence
Resilient Ethernet Protocol (REP)
Achieves ~50 ms convergence in large, complex networks
• Redundant Star Convergence
Multiple protocol options
Convergence times of <100ms for Flexlinks and Etherchannel
• Tested with Rockwell applications and multicast traffic
• Fast convergence avoids application reset and improves uptime
• Critical for industrial applications
Si Si
CZ-3750
Before (FlexLink Up)
After (FlexLink Up)
Flexlink Standby
Disruption (FlexLink Down)
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 30
Redundant Star Ring Linear
Cabling Requirements
East of Configuration
Implementation Costs
Bandwidth
Redundancy and Convergence
Disruption During Network Upgrade
Readiness for Network Convergence
Overall in Network TCO and Performance Best OK Worst
Ring Resilient Ethernet Protocol (REP)
Star/Bus Linear
HMI
Cisco Catalyst 2955
Cell/Area Zone
Catalyst 3750 Stackwise Switches
Controllers, Drives, and Distributed I/O
Cell/Area Zone
Controllers, Drives, and Distributed I/O
Cell/Area Zone
Controllers, Drives, and Distributed I/O
Cell/Area Zone
HMI
Controller
Catalyst 3750 Stackwise Switches
Catalyst 3750 Stackwise Switches
Redundant Star Flex Links EtherChannel
HMI
Controllers
HMI
Controllers
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 31
• Compare test with same topologies with fiber vs. copper uplinks
Multimode LC fiber cables
Cat 5e and Cat 6 copper cables
• All fiber topologies converged faster than copper topologies, approx. 500ms faster
• Ethernet standards allow for higher range of link-down notification for copper-based links
Fiber Media for Uplinks Significantly
Improves Network Convergence
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 32
Source: ARC Advisory Group
Factory
Automation
Motion
Control
Process
Automation
Function
Comm.
Technology
Period
Applications
Industries
Information Integration,
Slower Process Automation
.Net, DCOM, TCP/IP
1 second or longer
Pumps, compressors, mixers;
monitoring of temperature,
pressure, flow
Oil & gas, chemicals,
energy, water
Time-critical
Factory Automation
Industrial Protocols, CIP, etc.
10 ms to 100 ms
Material handling, filling, labeling,
palletizing, packaging; welding,
stamping, cutting, metal forming,
soldering, sorting
Auto, food and bev, electrical
assembly, semiconductor, metals,
pharmaceutical
Motion Control
Hardware and Software
solutions, e.g. CIP Motion, PTP
Synchronization of multiple
axes: printing presses, wire
drawing, web making, picking
and placing
Subset of factory automation
<1 ms
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 33
Selection Is Application Driven
Resiliency Protocol
Mixed Vendor
Ring Redundant
Star Net Conv >250 ms
Net Conv 70-100 ms
Net Conv > 1 ms
Layer 3 Layer 2
STP (802.1D) X X X X
RSTP (802.1w) X X X X X
MSTP (802.1s) X X X X X
PVST+ X X X X
REP X X X
EtherChannel (LACP 802.3ad)
X X X X
Flex Links X X X
DLR (IEC & ODVA)
X X X X
StackWise X X X X X
HSRP X X X X
GLBP X X X X
VRRP (IETF RFC 3768)
X X X X X
Net Conv: Network Convergence
Process and Information
Time Critical
Motion
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 34
价格低 技术领先
上得厅堂,下得厨房!
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 35
知名度低,合作伙伴少 中国市场占有率低
Hirschmann
Cisco
Sixnet
RuggedCom
N-Tron
Moxa
Phoenix
Contact
0.0% 5.0% 10.0% 15.0% 20.0% 25.0% 30.0% 35.0%
其他 = 19.1%
32.3
%
17.7
%
8.3%
6.5%
6.4%
5.3%
4.4%
source :
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 36
如何善用优势赢单
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 37
Option 1: 一张大网 ??
Drive
HMI
Cell/Area #2 (Ring Topology)
Rockwell Automation Stratix 8000
Layer 2 Access Switch
Controller
Drive
HMI
Cell/Area #1 (Ring Topology)
Rockwell Automation Stratix 8000
Layer 2 Access Switch
Controller
Drive
HMI
Cell/Area #3 (Ring Topology)
Rockwell Automation Stratix 8000
Layer 2 Access Switch
Controller
Drive
HMI
Cell/Area #n (Ring Topology)
Rockwell Automation Stratix 8000
Layer 2 Access Switch
Controller
… …
Option 2: n张子网
工艺1 工艺2 工艺3 工艺n
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 38
生产安全
生产成本
可靠耐用
维护管理
购置成本
评价一个工业项目的角度
品牌知名度,市场占有率
可靠性,安全性
易维护性,技术优势
服务能力
产品价格
工艺/产品选型的角度
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 39
设计单位 业主单位 总包商/服务商
对设计和工艺负责
对部件选型负责
对工程质量负责
对运行质量负责
对生产业务负责
对设计审核负责
初步设计 设计评审 设计修改 设计定稿
设备采购 工程实施 验收交付 运行维护 试运行
项目招投标
问题1:什么阶段做技术引导工作 最 重要?
问题2:谁是技术引导工作的 主要 对象?
设计阶段
设计单位
项目关系人
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 40
问题3:哪些 应用亮点 需要重点介绍?
问题4:哪些技术 陷阱 需要巧妙避开?
双环骨干网
超高安全防护等级
全网交换机都要工业级
技术陷阱
快速收敛
可靠性
安全特性
多环结构
SD卡-快速更换
应用亮点
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 41
Standby ACTIVE
Broken
请先看看我们的竞争对手是怎么做的
网络正常运行 网络出现断点
以 HIPER-Ring(超级冗余环网协议) 为例
快速收敛
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 42
主交换机管理工业环网的隐患
主交换机 备交换机
节点交换机
节点交换机
节点交换机 节点交换机
节点交换机
节点交换机
逻辑断点
主模式
快速收敛
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 43
主交换机管理工业环网的隐患
主交换机 备交换机
节点交换机
节点交换机
节点交换机 节点交换机
节点交换机
节点交换机
逻辑断点
1 2 3
状态改为转发
备模式 主模式
快速收敛
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 44
主交换机管理工业环网的隐患
主交换机 备交换机
节点交换机
节点交换机
节点交换机 节点交换机
节点交换机
节点交换机
逻辑断点
技术问题 导致的结果
1.依赖主交换机来维护环结构 单点故障 & 主备切换问题
2.必须经过多个探测周期才能确认故障 探测故障的时间周期长(3*100=300ms)
3.对光纤虚接等故障无法排除 造成网络结构频繁倒换,传输时通时断
主模式 备模式
快速收敛
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 45
环形链路断路保护
Edge Switch
Open
Alternate Port
Failed
Open
Open
Open Open
Switch C
Switch D
Open
Open
Failed
Flooded
Flooded
Flooded
Flooded
Flooded
• Distributed Protocol: Any REP port can initiate a switchover as long as it has previously acquired a secure key to unblock the alternate port.
•Using a Cisco Multicast address, the notification is forwarded in hardware so that each node in the segment is notified immediately without software involvement from any node. Link Failure
notification
Link Failure notification
快速收敛
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 46
测试说明: 1.测试采用16个环节点,80% 线速双向流量方式 2.在测试VLAN 300上发送80Mbps的测试流量 3.背景流量在其它所有VLAN上发送,共计4个FE端口,各发送80Mbps的背景流量
测试结果: 环网自愈时间在33~40毫秒ms
快速收敛
主要的应用亮点1
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 47
可靠性
Description Feature
IP20 (Protection against dust, No protection against water) 防护等级
LC 光纤接口
IEEE 1588v2 – hardware ready 实时以太网
4 kV (line to earth) / 2 kV (line to line) 浪涌保护
5% - 95% Condensing 相对湿度
Dual 24V alarm relays, normally open 告警
24V/48V DC 电源输入(基础模块自带)
20g (Operational), 30g (Non-Operational) 震荡
-40C to 75C (-40F to 167F) 温度
DIN-Rail, Wall-Mount and Rack-Mount (19” rack converter provided)
安装模式
适用于恶劣环境
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 48
可靠性
PTP Software module for time synchronization PTP (IEEE 1588v2)
Optimized Smartport profiles for industrial automation devices.
工业自动化灵活端口模板
DHCP server offers the same IP address to the devices DHCP 精确地址分配
描述 特性
A peer-to-peer application layer protocol suite, shared by industrial networks such as DeviceNet, ControlNet and EtherNet/IP.
通用工业协议 (CIP)
为工厂应用优化
Catalyst 2960 LAN Base Image +
当前版本都已提供
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 49
断路点 Graceful恢复
Alternate Port
Preferred Alternate
Port
Switch(config-if)# rep preempt delay 1
故障查明/处理后
Primary Edge Port
Secondary Edge Port
Preferred Alternate
Port
Alternate Port
Alternate Port
Preferred Alternate
Port
Pre-emption delay: 15 sec. to 300 sec.
Preferred Alternate
Port
可靠性
主要的应用亮点2
A B
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 50
安全特性
方便问题定位 Port Mirroring
消除网络中的潜在环路,防止广播风暴 Spanning Tree Protocol
限定在一个交换端口上的接入设备个数 Port Security
在链路断开后能够使网络迅速自愈 Rapid Spanning Tree Protocol (RSTP)
消除因为大量广播或组播流量产生的网络中断
Broadcast & Multicast rate limiting
管理组播流量的分发,提高网络带宽的利用效率
IGMP / IGMP snooping (with querier)
为上层管理软件提供安全的协议 SNMP (v3)
IP地址的分配 DHCP (client)
减少广播域,从而降低广播所带来的影响 VLAN / VLAN Trunking
特性所带来的好处 特性
设备级的安全特性
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 51
Comprehensive Security Architecture Protecting Critical Manufacturing Assets
• Deploy zone concept for enterprise,
DMZ and manufacturing areas
• Network infrastructure security
• Port security (MAC filtering, etc.)
• Identity access control with ACLs
and firewalls
• Security management for all
security devices and services
• Threat control and containment—IPS
Security Services Must not Compromise Manufacturing Operation or Impact Control Traffic
安全特性
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 52
SD卡-主机快速更换
简单易用
“零配置”更换
– 当遇到问题的时候可以简单的替换交换机
– 操作人员几乎不需要懂网络技术就可以做到替换
– IE SwapDrive 技术保证了快速的恢复
存储在SwapDrive中的文件
– IOS 系统文件 – (tar, html) – 2 sets
– 配置信息
– VLAN的数据库
– 其他设备的配置信息
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 53
多环结构
弹性以太网协议 区段与环形拓扑之间的关系
REP Segment
Blocked
REP Segment
Blocked
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 54
多环结构
REP灵活的应用 支持复杂的环形拓扑组网
Segment 2
Segment 1 Segment 3
Segment 3
Segment 1
Segment
Segment 2
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 55
双环骨干网
注意:思科IE系列交换机,都只有2个千兆光纤接口
我们的应对:
1. 实际光缆布线作业,受环境和成本限制,设计的2条光纤通路往往是同一根光
缆中的2芯或4芯,通常都是共用唯一的布线管道,因此难以避免物理损坏。
2. 环网结构本身就提供了2个不同方向的链路冗余,单点故障对通信无影响。
3. 对于特别重要的工艺环节,建议采用双机双线路的完全双网冗余方案,确保通
信绝对安全。
当前,思科IE系列交换机 不能 支持双环骨干网的组网方式
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 56
IP65防护等级含义:完全防尘、向外壳各个方向喷水无有害影响
IP66防护等级含义:完全防尘、向外壳各个方向强烈喷水无有害影
2955防护等级是IP00,全都不防
IE3000防护等级是IP20,防灰(防护12.5mm直径和更大的外来物体),不防水
IP防护等级系统-(INTERNATIONAL PROTECTION)
是由IEC(INTERNATIONAL ELECTRO-TECHNICAL COMMISSION)所起草,将电器依其防尘、防湿气之特性加以分级。
IP防护等级是由两个数字所组成:
• 第1个数字表示电器离尘、防止外物侵入的等级,
• 第2个数字表示电器防湿气、防水侵入的密闭程度,
• 数字越大表示其防护等级越高
超高安全防护等级
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 57
超高安全防护等级
• 实际上在工厂环境下,会将自控设备(变频器,PLC)都放在有防护的控制箱内,大部分的自控设备的防护等级也很低,箱体不仅提供防尘防水的保护,而且提供对直流电的裸露接线柱的保护,这样可以将思科工业交换机放在同样的箱子中。
• 相对而言IE3000可在上述环境中直接使用。
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 58
超高安全防护等级
• 需要防尘的环境如炼钢,煤炭,常见问题是由于这些环境中空气中有带电腐蚀颗粒,会腐蚀电路板或造成电路板短路。
防护等级可达到IP43~IP65
独立保护盒 (Panduit 泛达)
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 59
全网交换机都要工业级
注意:思科IE系列交换机,都只有2个千兆光纤接口
IE3K IE3K
IE3K
??? ???
IE3K IE3K
IE3K
节点交换机
核心交换机 服务器 服务器 核心交换机的基本技术要求:
1. 支持REP协议
2. 高密度的GE接口
3. 具备3层路由功能
可选型号:
• ME-3400
• ME-3400E
• ME-3600X
• Catalyst-4500/4500X
这些型号都不是工业级交换机
我们的应对:
1. 核心交换机都是和服务器一起部署在机房或监控室,机房或监控室都是24小时有
人操作的环境,有空调有防静电地板,根本不需要工业级设备。
2. 客户的服务器都是普通服务器,服务器能适用的环境思科交换机就更没问题了。
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 60
物理尺寸(高×宽×深) :
• 1.73 x 17.5 x 11.0 in. (4.4 x 44.5 x 27.9 cm)
ME-3400G-12CS-A 图标
核心交换机 ME-3400G-12CS-A
注意:不支持百兆单模 端口类型:
• 12个 光/电双介质千兆端口
(10/100/1000 或 SFP)
• 4个 光千兆端口
• 双交流 AC 电源供电
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 61
描述 规格
性能 转发带宽: Cisco ME 3400G-12CS AC: 32 Gbps Cisco ME 3400G-12CS DC: 32 Gbps Cisco ME 3400-24TS AC: 8.8 Gbps Cisco ME 3400-24TS DC: 8.8 Gbps 转发速率: Cisco ME 3400G-12CS AC: 26 mpps Cisco ME 3400G-12CS DC: 26 mpps Cisco ME 3400-24TS AC: 6.5 mpps Cisco ME 3400-24TS DC: 6.5 mpps 128-MB DRAM和32-MB闪存 最多能配置8000个MAC地址 最多能配置5000个单播路由 最多能配置1000个IGMP群组和组播路由 可配置的最大传输单元(MTU)为9000字节,用于千兆位以太网端口上的桥接;最大1998字节,用于快速以太网端口上的桥接和路由
描述 规格
平均故障间隔时间 (MTBF)
Cisco ME 3400G-12CS AC: 247,563小时 Cisco ME 3400G-12CS DC: 297,688小时 Cisco ME 3400-24TS AC: 391,823小时 Cisco ME 3400-24TS DC: 492,603小时
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 62
成功案例分析
© 2009 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 62
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 63
• 首钢集团过去一直采用某欧洲厂商的工业交换机解决方案,思科一直与客户多个部门沟通交流,但由于工业客户的使用传统难以改变,替换难度很大。
• 但是2010年在某分厂新型高炉投产时,高炉工业网络出现大面积故障,该欧洲厂商支持不力,使客户设计和技术部门压力巨大。客户决定引入思科作为竞争厂商,避免单一来源技术风险。
• 思科帮助客户分析其网络故障原因是:该欧洲厂商工业交换机仅采用1-2台交换机来管理整个网络,网络收敛速度慢,同时交换机对网络连接状态误判,造成网络始终处于循环震荡状态,造成网络通信中断。客户综合各种故障现象后,非常认同思科对故障的分析判断,也坚定了客户在后续项目中选择思科的信心。
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 64
其中高炉网络负责管理高炉炼铁的生产,涉及高温、高压、高金属粉尘的恶劣作业环境,因此技术上要求:
1. 交换机产品质量可靠
2. 网络收敛速度快
3. 组网拓扑灵活,支持复杂的多环嵌套结构
4. 物理端口数量配置灵活
(详细网络拓扑设计参见后页)
客户另一新厂扩建项目中,设计单位选择思科作为工业网络设备提供商,在高炉和水处理2个工艺流程的工业网络采用思科的产品和设计。
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 65
百兆单模
百兆多模
百兆电
千兆单模
千兆多模
千兆电 专家系统
原料交换机
工长服务器
数据服务器 HMI HMI
看水
9台
交换机
TMT
本体
炉顶上料
热风炉
8TC 4TC 4TC
倍福 喷煤
8TC+8FM 8TC 8TC
4TC
8TC+8FM 4TC
综合管网 粗煤气
上料除尘
炉前除尘 联合泵站
8TC+8TM
连线类型示意:
6台
核心交换机-1 核心交换机-2 核心交换机-3
4TC
高炉部分网络拓扑图
原煤
8TC+8F
M
8TC+8F
M
PLC
1SW 2SW
3SW
4SW 5SW 6SW 7SW
8SW
9SW
10SW
11SW 13SW
12SW
14SW
15SW
61SW
12SW 图位号
100M电* 8
100M电* 6
100 MM* 4
网管服务器
下联1
下联2
100M电* 6
100 MM* 2
干法除尘
PLC
4TC+8FM
8TC+8FM
7SW增加1
7SW增加2
8TC+8FM 4TC+8FM 4TC
10SW增加1 10SW增加2
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 66
百兆单模
百兆多模
百兆电
千兆单模
千兆多模
千兆电
连线类型示意:
SW1
SW10
4TC
SW3 SW4
4TC+8FX
SW12
4TC
SW5
4TC
SW6 SW7
4TC+8FX
SW13 SW14
SW15
SW8
4TC+8FX
SW16
SW17
SW9
4TC+8FX
SW18 SW20
SW19
中水深度处理PLC
2#给排水外线及排水提升泵站PLC
1#给排水外线及排水提升泵站PLC
过程站内加药
污泥脱水设备PLC
含油废水PLC
泥处理 1580热轧
磁盘净化站/漩流井PLC
高速过滤器PLC
1580流泵站内9003G-9006G
PLC
公辅 连铸 精炼干法
RH系统/
干法除尘/
连铸系统PLC
炼钢
4TC+8FX 4TC+8FX 4TC+8FX
4TC+8FX
4TC+8FX
4TC+8FX
4TC+8FX 4TC+8FX
HMI
5台
主控室
1580热轧水系统操作员站
SW11
炼钢 能源中心
ERP
服务器
数据采集站
二级机室
4TC+8FX
SW2
HMI
5台
主控室
SW3 图位号
4TC
SW增加
网管服务器
水处理部分网络拓扑图
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 67
思科提供全套的工业级以太网络解决方案,满足了客户高安全等级生产网络的业务需求。
采用思科ETTF方案架构,实现企业网络和工业网络的完美融合,用思科网络平台承载了从ERP到MES的全部企业核心生产数据流量。
利用思科产品和技术的独特优势,毫无争议的战胜目前国内市场占用率第一的竞争对手。
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 68
采用思科工业以太网解决方案,建成安全、高效、可靠的工业级生产网络,保障了工业生产的平稳运行。自2010年建成以来,已稳定运行达3年。
利用思科REP协议的独特优势,使生产网络自愈能力提升5倍(故障判断和隔离时间从250ms缩短到50ms)。
思科工业交换机维护简单(图形管理界面、SD卡自动备份等),IOS软件运行稳定。
摆脱了单一供应商的限制,更好的应用最新技术实现创新。
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 69
工业网络的现状与发展趋势
思科工业网络解决方案简介
如何善用优势赢单
成功案例分析
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 71
Product Collaboration
Common Technology View
Collaborating on Reference Architectures
People and Process Optimization
Develop process guidelines for help with
convergence, facilitate training and dialogue with IT
and Manufacturing
Tested and validated design and implementation
guidance and best practices for a converged network
architecture
Support use of open, unmodified standards, with
intelligent networking features in automation networks
through ODVA, ISA and others
Developed Industrial Ethernet switch incorporating the
best of Cisco and the best of Rockwell Automation
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 72
Website Operations Excellence (Internal)
Operations Excellence (External)
Design guides Rockwell Automation and Cisco – Converged Plantwide Ethernet - DIG 2.0
ODVA—Network Infrastructure for EtherNet/IP: Introduction and Considerations
ODVA—EtherNet/IP Media Planning and Installation Manual
Education series
Whitepapers Securing Manufacturing Computer and Controller Assets
Production Software within Manufacturing Reference Architectures
Achieving Secure Remote Access to Plant Floor Applications and Data
© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 73
Thank you.