What Every IT Professional ShouldKnow About Manufacturing andProduction System Plant FloorNetworksA Cisco and Rockwell Aut...
Speakers                           Scott Friberg- Cisco                           Scott is a Solutions Architect focused o...
Education Series Webcasts • The Trend - Network Technology and Cultural Convergence • What every IT professional should kn...
Agenda •     Introductions •     Plant Floor and Enterprise Network Convergence •     Industrial Plant Operations •     Te...
Network ConvergenceThe Perpetual Trend                                                                 Business Enterprise...
Industrial Plant Operations                                                                                   Household an...
Industrial Plant Logical Model                                                                                          Lo...
Industrial Plant Logical Model• MES - Manufacturing Execution System measures and controls  production facilities; it trac...
Industrial Plantwide System Convergence                                                                           OEM  Bus...
Packaging - Pick and PlaceIndustrial Plant Application Example        Level 1                                             ...
Converged Industrial ApplicationTechnology Convergence - Perpetual Trend                                                  ...
Industrial Network ConvergenceTechnology Convergence - Perpetual Trend                                                    ...
What makes industrial Ethernet “industrial”Technology Convergence - Perpetual Trend       Layer Name                      ...
IT vs. Industrial Network CharacteristicsTechnology Convergence - Perpetual Trend• Enterprise (IT) Network Requirements   ...
IT vs. Industrial MediaTechnology Convergence - Perpetual Trend                                                           ...
IT vs. Industrial SwitchingTechnology Convergence - Perpetual Trend• IT Switches   – Enterprise class   – 19” rack mount –...
What is Common Industrial Protocol?Technology Convergence - Perpetual TrendLayer No.                                      ...
CIP Industrial Network TrafficTechnology Convergence - Perpetual Trend• Standard 802.3 Ethernet• Standard IETF TCP/IP Suit...
Real-Time Application ClassesTechnology Convergence - Perpetual Trend                                                 Proc...
Industrial Data PrioritizationTechnology Convergence - Perpetual Trend                                                    ...
Industrial Data PrioritizationTechnology Convergence - Perpetual Trend                                                    ...
Topology OptionsTechnology Convergence - Perpetual Trend   Redundant                                                      ...
Wireless Topology OptionsTechnology Convergence - Perpetual Trend   Application of wirelesstechnologies and devices has  b...
Plant Floor and EnterpriseNetwork Convergence                                                                             ...
Cultural and Organizational ConvergenceSecurity Policies                                             IT Network           ...
Best Practices for Network, Technology,Organizational and Cultural Convergence• Emergence of Manufacturing IT    – IT Hybr...
Rockwell Automation and Cisco AllianceTechnology, Network, Cultural and Organizational ConvergenceCommon Technology View S...
Common Toolsets – Stratix IE SwitchesRockwell Automation and Cisco Alliance                                 Cisco Network ...
Converged Plantwide Ethernet (CPwE)Rockwell Automation and Cisco AllianceRecommendations and guidance to help reduce Laten...
CPwE - Logical Framework                                   Layer 3                                                        ...
CPwE - Logical Framework• Industrial and IT network  convergence                                                          ...
Industrial and Enterprise Security DesignCPwE – Defense-in-Depth• Security is not a bolt-on  component• Comprehensive Netw...
Convergence-Ready Network SolutionsIndustrial & IT Networks                                                               ...
Convergence-Ready Network SolutionsIndustrial & IT Networks                                                               ...
Convergence-Ready Network SolutionsIndustrial & IT Networks  • Use of Network Services         – Segmentation             ...
Secure Remote AccessConvergence-Ready Network Solutions• Tighter supply chain and trusted partner integration             ...
CPwE Secure Remote AccessConvergence-Ready Network SolutionsSecure remote access for employees                            ...
What we’re asking of you• Facilitate early dialogue with your Control System Engineering (CSE)  counterparts to ensure suc...
Where to Find More Information• Websites   – http://www.ab.com/networks/architectures.html   – http://www.cisco.com/web/st...
Thank you for participating!                                    Questions            Please complete the                ev...
Upcoming SlideShare
Loading in...5
×

What Every It Professional Should Know

1,240

Published on

Plant Floor and Enterprise Network Convergence
Industrial Plant Operations
Technology Convergence
Cultural and Organizational Convergence

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,240
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
35
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

What Every It Professional Should Know

  1. 1. What Every IT Professional ShouldKnow About Manufacturing andProduction System Plant FloorNetworksA Cisco and Rockwell AutomationEducation WebcastFebruary 16th, 2012Scott Friberg - Cisco SystemsIndustry Solutions Architect for ManufacturingGregory Wilcox - Rockwell AutomationBusiness Development Manager - Reference Architectures © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  2. 2. Speakers Scott Friberg- Cisco Scott is a Solutions Architect focused on Industrial Intelligence for Cisco. He has worked in many areas of technology during 13 years with Cisco including Routing and Switching, Voice, and Wireless. Scott is currently working on networking solutions for the manufacturing and process verticals. Gregory Wilcox - Rockwell Automation Business Development Manager for Networks at Rockwell Automation. Gregory leads a multi-company effort to establish tested and validated design guidelines that help manufacturers design and deploy large-scale automation network infrastructures. As a major contributor to the Cisco and Rockwell Automation Alliance, Gregory has advanced the adoption of convergence between industrial and IT networks. Gregory has been designing and implementing industrial network solutions for the past 27 years, with 22 of those years at Rockwell Automation, holding roles of increasing responsibility such as Application Engineer and Solution Architect. 2 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  3. 3. Education Series Webcasts • The Trend - Network Technology and Cultural Convergence • What every IT professional should know about Plant Floor Networking • What every Plant Floor Controls Engineer should know about working with IT • Industrial Ethernet: Introduction to Resiliency • Fundamentals of Secure Remote Access for Plant Floor Applications and Data • Securing Architectures and Applications for Network Convergence • Convergence-Ready EtherNet/IP Solutions • Available Online – http://www.ab.com/networks/architectures.html – http://www.cisco.com/web/strategy/manufacturing/cisco-rockwell_automation.html 3 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  4. 4. Agenda • Introductions • Plant Floor and Enterprise Network Convergence • Industrial Plant Operations • Technology Convergence • Cultural and Organizational Convergence • Cisco and Rockwell Automation Alliance & Collaboration • Convergence-Ready Solutions • What we’re asking of you 4 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  5. 5. Network ConvergenceThe Perpetual Trend Business Enterprise Systems Customer Suppliers Demand Supply Chain Flexible Integration Operations Industrial Plantwide Systems Lower Total Cost of Ownership | Faster Time to Market | Better Asset Optimization | Broader Risk Management 5 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  6. 6. Industrial Plant Operations Household and Automotive Food and Beverage Life Sciences Personal Care Semiconductor/ Water/Wastewater Mining/Metals/Cement Oil and Gas Electronics Common Enterprise and IT Functions, Unique Industrial Automation Functions 6 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  7. 7. Industrial Plant Logical Model Logical Model Converged Plantwide Ethernet 7 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  8. 8. Industrial Plant Logical Model• MES - Manufacturing Execution System measures and controls production facilities; it tracks and measures key operational criteria such as product, equipment, labor, inventory, defects, etc.; a key interface to the Enterprise-level applications; Level 3 & 4• Historian - Collects historical data from the plant floor applications and reports or displays them in various report formats; Level 3• SCADA - Supervisory Control and Data Acquisition; large scale distributed measurement and control systems, usually covers a geographical area; Level 3• HMI - Human Machine Interfaces display operational status to operation personnel and may allow them to perform basic functions (e.g. start/stop a process); Level 2• PAC (a.k.a. PLC) - Programmable Automation Controller or Programmable Logic Controller; controls a subset (Cell/Area), e.g. a line or function, as well as the relevant devices in that Cell/Area; Level 1• Sensor/Actuator device - a device that measures or controls key functions or aspects of the industrial automation process; Level 0 8 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  9. 9. Industrial Plantwide System Convergence OEM Business Enterprise Corporate Other Systems Supplier Headquarters Plant Customer Control Utilities Room Industrial Plantwide Material Systems Receiving Processing Handling Batching/ Shipping Blending Packaging 9 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  10. 10. Packaging - Pick and PlaceIndustrial Plant Application Example Level 1 Level 0 Processor Input Level 0 Actuator 10 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  11. 11. Converged Industrial ApplicationTechnology Convergence - Perpetual Trend • Machine Control and Operator Interface • Integrated Machine Safety • Time Synchronization • Integrated Motion • Video – inspection • Mobility & Collaboration Single Network Technology Camera I/O Disparate Network Technology Controller HMI Net Controller Servo Drive I/O Net VFD Safety Net Drive HMI Motion Net Safety I/O 11 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  12. 12. Industrial Network ConvergenceTechnology Convergence - Perpetual Trend Corporate Network Corporate Network Office Back-Office Mainframes and Office Back-Office Mainframes and Applications, Servers (ERP, MES, etc.) Applications, Servers (ERP, MES, etc.) Internetworking, Control Network Internetworking, Data Servers, Gateway Data Servers, StorageHuman Machine StorageInterface (HMI) Supervisory Controller Control Phone Controller Camera Supervisory Safety Control Controller Motors, Drives Robotics Safety Robotics Motors, Drives I/O Actuators I/O Actuators Sensors and other Human Machine Sensors and other Input/Output Devices Interface (HMI) Input/Output Devices Industrial Network Industrial Network Traditional – 3 Tier Converged Plantwide Ethernet Industrial Network Model Industrial Network Model 12 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  13. 13. What makes industrial Ethernet “industrial”Technology Convergence - Perpetual Trend Layer Name Layer No. Function Examples Application Layer 7 Network Services to User App CIP Presentation Layer 6 Encryption/Other processing Session Layer 5 Manage Multiple Applications Transport Layer 4 Reliable delivery/Error correction TCP - UDP Routers Network Layer 3 Logical addressing - Routing IP Switches Data Link Layer 2 Media Access Control IEEE 802.3 Physical Cabling Layer 1 Specifies voltage, pin-outs, cable TIA - 1005Physical Layer Infrastructure Device Common Application Hardening Hardening Layer Protocol 13 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  14. 14. IT vs. Industrial Network CharacteristicsTechnology Convergence - Perpetual Trend• Enterprise (IT) Network Requirements So, what are the – Internet Protocols similarities and – Wide Area Network (WAN) – High availability – redundant star topologies differences? – Latency, jitter, etc. – Voice, video, data applications – IP Addressing - dynamic – Security - pervasive• Industrial Network Requirements – Industrial and internet protocols – Local Area Network (LAN) - packets are small: 100–200 bytes, but communicated very frequently (every 0.5 to 10s of ms) – Resiliency – ring topologies are prominent, redundant star topologies are emerging – Latency, jitter, etc. – Information, control, safety, time synchronization and motion – IP Addressing – static – Security – emerging: Open by Default, must be Closed by Configuration 14 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  15. 15. IT vs. Industrial MediaTechnology Convergence - Perpetual Trend 600V rated cable Small Form-factor Pluggable M12 Connectivity RJ45 Connectivity 15 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  16. 16. IT vs. Industrial SwitchingTechnology Convergence - Perpetual Trend• IT Switches – Enterprise class – 19” rack mount – e.g. 1RU – Managed• Industrial Ethernet Switches – Industrial hardened – Panel or DIN mount – Managed or unmanaged 16 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  17. 17. What is Common Industrial Protocol?Technology Convergence - Perpetual TrendLayer No. • Standard set of services for accessing data and Layer 7 controlling industrial device operation • Standard to integrate Layer 4 I/O control, device configuration and Layer 3 data collection in industrial automation Layer 2 and control systems Layer 1 odva.org 17 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  18. 18. CIP Industrial Network TrafficTechnology Convergence - Perpetual Trend• Standard 802.3 Ethernet• Standard IETF TCP/IP Suite BOOTP FTP HTTP OPC CIP SNMP DHCP• Application Layer Protocol - Common Industrial Protocol (CIP) TCP UDP• EtherNet/IP = Ethernet + IP + CIP OSPF IGMP ICMP• TCP and UDP at Transport Information Traffic Control Traffic• IP Unicast and Multicast ARP IP RARP at Network IEEE 802.3 Ethernet• Static IP Addressing for devices EtherNet/IP Specifies How CIP Communication Packets Can Be Transported over Standard Ethernet and TCP/IP Technology 18 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  19. 19. Real-Time Application ClassesTechnology Convergence - Perpetual Trend Process Discrete Motion Automation Automation Control Information Integration, Time-critical Function Slower Process Discrete Automation Motion Control Automation Communication .Net, DCOM, TCP/IP Industrial Protocols - CIP Hardware and Software Technology solutions, e.g. CIP Motion, PTP Period .5 second or longer 10 ms to 100 ms <1 ms Auto, food & beverage, Oil & gas, chemicals, Industries energy, water semiconductor, Subset of discrete automation metals, pharmaceutical Pumps, compressors, Material handling, filling, Printing presses, wire drawing, Applications mixers, instrumentation labeling, palletizing, packaging web making, pick & placeSource: ARC Advisory Group 19 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  20. 20. Industrial Data PrioritizationTechnology Convergence - Perpetual Trend Control Data Video Voice (e.g., CIP) (Best Effort) Low to Moderate to Moderate to Low to Bandwidth Moderate High High Moderate Random Drop High Low High Low Sensitivity Latency High High Low High Sensitivity Jitter High High Low High Sensitivity Not all traffic is created equal! Industrial automation and control system (IACS) networks must prioritize control traffic over other traffic types to ensure deterministic data flows with low latency and low jitter 20 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  21. 21. Industrial Data PrioritizationTechnology Convergence - Perpetual Trend Priority Cell/Area Zone QoS Queue, Typical Enterprise QoS PTP-Event Queue 1 Priority CIP Motion Queue, VoiceQueue 1 PTP Management, Video Safety I/O Call Signaling & I/O Output Network Control Network Control OutputQueue 2 Voice Queue 3 Critical Data CIP Explicit Messaging Output Output Call Signaling Queue 3 Best Effort Queue 4 Video Output Output Bulk Data Critical Data Queue 2 Queue 4 Scavenger Bulk Data Note: Due to queue characteristics of the Stratix Best Effort 5700/8000/8300, the queue order of priority is different than Scavenger general enterprise. 21 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  22. 22. Topology OptionsTechnology Convergence - Perpetual Trend Redundant Ring Star/Bus Star Cisco Catalyst 3750 StackWise Switch Stack Resilient Ethernet Protocol (REP) Cisco Catalyst 3750 StackWise Switch Stack Linear Cisco Catalyst 3750 StackWise Switch Stack Flex Links Cisco Catalyst 2955 HMI HMI Controller Controllers HMI Controllers HMI Controllers, Drives, and Distributed I/O Cell/Area Zone Controllers, Drives, and Distributed I/O Controllers, Drives, and Distributed I/O Cell/Area Zone Cell/Area Zone Cell/Area Zone Redundant Star Ring Linear Cabling Requirements Ease of Configuration Implementation Costs Bandwidth Redundancy and Convergence Disruption During Network Upgrade Readiness for Network Convergence Overall in Network TCO and Performance Best OK Worst 22 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  23. 23. Wireless Topology OptionsTechnology Convergence - Perpetual Trend Application of wirelesstechnologies and devices has become widespread on the plant floor To help avoid rogue APs, the Mobility and Collaboration needs of the plant floor must be taken into consideration when designing and deploying a plantwide wireless strategy © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  24. 24. Plant Floor and EnterpriseNetwork Convergence Business Agility Competitive Advantage Business Model Innovation Technology Convergence Network Convergence Organizational Convergence Cultural Convergence Ethernet and IP Wide Deployment Increasing Business Pressures 24 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  25. 25. Cultural and Organizational ConvergenceSecurity Policies IT Network Industrial Network Protecting IntellectualFocus Property and Company 24/7 Operations, High OEE Assets Confidentiality AvailabilityPrecedence of Integrity IntegrityPriorities Availability Confidentiality Converged Network of Data, Converged Network of Data,Types of Data Traffic Voice and Video Control, Information, Safety and Motion Strict Network Authentication Strict Physical AccessAccess Control and Access Policies Simple Network Device AccessImplications of a Continues to Operate Could Stop OperationDevice Failure Shut Down Access to Potentially Keep OperatingThreat Protection Detected Threat with a Detected Threat ASAP ScheduledUpgrades During Uptime During Downtime 25 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  26. 26. Best Practices for Network, Technology,Organizational and Cultural Convergence• Emergence of Manufacturing IT – IT Hybrid• IT and Manufacturing collaboration and sharing of best practices on: – Standardization of design and technology – System architecture design – Protocols and services – Service and support models – Industrial Security Policy• Consult reference architectures, reference models and industry standards: – Network Segmentation Open, two-way – Network services dialog is critical! – Domains of Trust 26 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  27. 27. Rockwell Automation and Cisco AllianceTechnology, Network, Cultural and Organizational ConvergenceCommon Technology View Supporting use of open standards, with intelligent networking features in industrial networks through ODVA, ISA and othersCollaborating on Reference Architectures Tested and validated recommendations, design and implementation guidance and for a converged Industrial and IT network architecturePeople and Process Optimization Developed process guidelines to help with convergence, facilitate training and dialogue with IT Network Engineers and Industrial Control System EngineersProduct Collaboration Developed industrial Ethernet switch incorporating the best of Cisco and the best of Rockwell Automation 27 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  28. 28. Common Toolsets – Stratix IE SwitchesRockwell Automation and Cisco Alliance Cisco Network Assistant FactoryTalk View, Faceplates Command Line Interface Device Manager RSLogix, Add-on Profile 28 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  29. 29. Converged Plantwide Ethernet (CPwE)Rockwell Automation and Cisco AllianceRecommendations and guidance to help reduce Latency and Jitter, to helpincrease data Availability, Integrity and Confidentiality, and to helpdesign and deploy a Robust, Secure and Future-Ready EtherNet/IPnetwork infrastructure • Robust Physical Layer • Segmentation • Resiliency Protocols and Redundant Topologies • Time Synchronization • Prioritization - Quality of Service (QoS) • Multicast Management • Convergence-Ready Solutions • Security - Defense-in-Depth 29 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  30. 30. CPwE - Logical Framework Layer 3 Catalyst 3750 Distribution Layer 3 StackWise Switch Building BlockSwitch Stack Cell/Area Zones Levels 0–2 Layer 2Access Switch Level 2 HMI Rockwell Automation HMI Controller Stratix 8000 Drive Layer 2 Access Switch HMI Drive Layer Controller 2 Layer 2 Layer 2 Building Block I/O Building Block Drive Building Block HMI I/O Level 1 I/O Media & Controller Controller Level 0 Connectors Drive Cell/Area Zone #1 Cell/Area Zone #2 Redundant Star Topology Ring Topology Cell/Area Zone #3 Flex Links Resiliency Resilient Ethernet Protocol (REP) Bus/Star Topology• The Cell/Area zone is a Layer 2 network for a functional area of the plant floor. Key network considerations include: – Structure and hierarchy using smaller Layer 2 building blocks – Logical segmentation for traffic management and policy enforcement (e.g. QoS, Security) to accommodate time-sensitive applications 30 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  31. 31. CPwE - Logical Framework• Industrial and IT network convergence ERP, Email, Wide Area Network (WAN) Enterprise Zone Levels 4 and 5• Plantwide EtherNet/IP Patch Management Terminal Services Demilitarized Zone (DMZ) Architectures Application Mirror AV Server Gbps Link for Failover Detection Firewall• Hierarchical segmentation Firewall (Standby) Cisco ASA 5500 Demilitarized Zone (DMZ) (Active) – Scalability FactoryTalk Application Servers Industrial Zone • View Site Operations and Control – Resiliency • • Historian AssetCentre, Catalyst Level 3 • Transaction Manager 6500/4500 Cisco – Traffic management FactoryTalk Services Platform Catalyst Switch • Directory Remote Network Services – Policy enforcement • Security/Audit Access Server Catalyst 3750 StackWise • DNS, DHCP, syslog server • Network and security mgmt Data Servers Switch Stack• Security policies Cell/Area Zones Levels 0–2 – Defense-in-depth• Secure remote access Rockwell Automation Stratix 8000 HMI Controller Layer 2 Access Switch HMI Drive Controller I/O Drive Drive HMI I/O I/O I/O Controller Cell/Area Zone #1 Cell/Area Zone #2 Redundant Star Topology Ring Topology Cell/Area Zone #3 Flex Links Resiliency Resilient Ethernet Protocol (REP) Bus/Star Topology 31 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  32. 32. Industrial and Enterprise Security DesignCPwE – Defense-in-Depth• Security is not a bolt-on component• Comprehensive Network Security Model for Defense-in- Depth• Industrial Security Policy• DMZ Implementation• Design Remote Partner Access Policy, with robust & secure implementation• Security Services Must Not Compromise Operations of the Cell/Area Zone Network Traffic 32 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  33. 33. Convergence-Ready Network SolutionsIndustrial & IT Networks Hello. How are tag? Guten you? Hi. Bonjour? I’m great. PLANT MACHINE 33 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  34. 34. Convergence-Ready Network SolutionsIndustrial & IT Networks Industrial Partner Plantwide SystemsSolution(s)e.g. OEM • Use of an industrial Ethernet protocol, such as EtherNet/IP, that fully utilizes standard Ethernet and IP as the industrial network infrastructure. – Common network infrastructure devices – asset utilization – Future-ready - sustainability • IP addressing schema: – Class - address range, subnet, default gateway (routability) – Implementation conventions – static/dynamic, hardware/software configurable, NAT/DNS (who manages?) • Use of industrial managed switches – Network services such as loop prevention – Integration between the network infrastructure and the control system – configuration, management, diagnostics/troubleshooting 34 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  35. 35. Convergence-Ready Network SolutionsIndustrial & IT Networks • Use of Network Services – Segmentation • Virtual LANs (VLANs) • Structured hierarchy using Layer 2 and Layer 3 switching • Topology – Data prioritization - quality of service (QoS) – Availability – loop prevention, resilient topologies and protocols – Multicast management – Security stance • Physical access, port security, access control lists, FactoryTalk Security • Alignment with emerging industrial automation and control system (IACS) security standards such as ISA-99 and NIST 800-82 • Time Synchronization Services – IEEE 1588 Precision Time Protocol (PTP) • Grand Master, Boundary Clock, Transparent Clock – CIP Sync applications – CIP Motion applications 35 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  36. 36. Secure Remote AccessConvergence-Ready Network Solutions• Tighter supply chain and trusted partner integration Trusted Partners• Implementation of lean initiatives through better asset optimization Machine System Builder Integrator• Global availability of equipment, machines and services• Scalable service differentiation – Machine Builders, Skid Builders, System Integrators automation vendors, contractors• Machine Builder cost pressures – Machine build cost – On-site commissioning; reduction in resources and duration – Warranty support; dispatching of resources – Optimization services; partnership vs. supplier• IT-ready solutions – Elimination of security back doors – Holistic industrial network infrastructure security solutions Industrial Plantwide Systems 36 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  37. 37. CPwE Secure Remote AccessConvergence-Ready Network SolutionsSecure remote access for employees Remote Engineerand trusted partners or Partner Cisco VPN Client IPSEC VPN– Meeting the security requirements of IT while enabling plant personnel to Internet leverage trusted partners and shared, Enterprise Edge Firewall Enterprise Zone Levels 4 and 5 Enterprise SSL VPN distributed company resources Data Center– Common IT Infrastructure Enterprise Connected Engineer– Following emerging Industrial Automation Enterprise and Control System (IACS) security WAN standards HTTPS Enterprise Zone • Defense-in-depth Levels 4 and 5 • DMZ Patch Management Gbps Link Demilitarized Zone (DMZ)– Enables remote asset management: Application Mirror AV Server Failover Detection Remote Desktop monitoring, configuration and audit Protocol (RDP) Cisco Firewall Firewall– Helps simplify change management, ASA 5500 (Standby) (Active) Demilitarized Zone (DMZ) version control, regulatory compliance FactoryTalk Application Servers • View and software license management • • Historian AssetCentre Catalyst 6500/4500 Remote Access Server • Remote Desktop Services • RSLogix 5000– Helps simplify remote client • Transaction Manager FactoryTalk Services • FactoryTalk View Studio Platform health management • Directory Catalyst 3750 StackWise Industrial Zone Site Operations and Control • Security/Audit Switch Stack– One size does not fit all – need a Data Servers Level 3 scalable secure solutions EtherNet/IP Cell/Area Zones Levels 0–2 37 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  38. 38. What we’re asking of you• Facilitate early dialogue with your Control System Engineering (CSE) counterparts to ensure success of your Plant and Enterprise Network Convergence• Review this recorded Webcast later with your CSE colleagues• Understand and take into consideration Operations/Manufacturing requirements – 24/7 Operations, High OEE, Low MTTR• Account for differences in Industrial and Enterprise networks when developing plantwide networks – Traffic types, data prioritization, IP addressing schema, security, wireless• Consult reference architectures, reference models and industry standards• Collaborate to share best practices between IT and CSE – Industrial security and QoS policy – Partner Convergence-Ready Solutions (e.g. Machines, Skids) – Secure Remote Access for Partners 38 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  39. 39. Where to Find More Information• Websites – http://www.ab.com/networks/architectures.html – http://www.cisco.com/web/strategy/manufacturing/cisco- rockwell_automation.html• Design Guides – Converged Plantwide Ethernet (CPwE)• Application Guides – Fiber Optic Infrastructure Application Guide• Education Series• Whitepapers – Top 10 Recommendations for Plantwide EtherNet/IP Deployments – Securing Manufacturing Computer and Controller Assets – Production Software within Manufacturing Reference Architectures – Achieving Secure Remote Access to Plant Floor Applications and Data 39 © 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  40. 40. Thank you for participating! Questions Please complete the evaluation!© 2012 Cisco Systems, Inc. and Rockwell Automation, Inc. All rights reserved.
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×