AquaWeb System Build-up and Data Security
Jörgen Jäger | BD Manager Monitoring & Control | September 19, 2016
my Presentation 9/21/2016<© Sulzer > | slide 2
AquaWeb a Monitoring and Surveillance System
AquaWeb is a web based Monitoring and
Surveillance system with as well remote control
and Alarm handling capabilities.
The advanced alarm management is mainly aimed
at wastewater collection pumping stations. It’s a
whole range of services including everything from
pump controllers and modems at the station, via a
communication server, to a web interface.
AquaWeb can be used to
Show the status of the whole collection network on a map
Show the status of specific stations
Advanced alarm handling and routing
Categorization of alarms and reason
Collect and present events
Collect and present log data
my Presentation 9/21/2016<© Sulzer > | slide 3
Always reachable via internet
Low investment cost
No upgrade costs
No maintenance costs
Fixed running cost
Top of the range service and operation
High built-in security
Control & Monitoring functions to prevent/reduce overflows/flooding's
High system and data security
AquaWeb a Monitoring and Surveillance System
Advantage for collection operation
my Presentation 9/21/2016<© Sulzer > | slide 4
AquaWeb, Two Contract Levels Available
AquaWeb, a web based Monitoring and
Surveillance system.
AquaWeb 3G SIM card
(Telenor Connexion):
The SIM card including set-up instructions for connection to AquaWeb for the Sulzer Control & Monitoring devices
The basic version AquaWeb CMS 241
“Monitoring & Reporting” includes:
Remote on-line Monitoring with support for Geographical map and an interface to stations, indication of Historical Report & Trending with basic Alarm indication.
The upper level AquaWeb CMS 251 “Remote Control & Alarms” includes:
The basic version functionality plus support for Remote Control as well for advanced Alarm handling including Alarm Dispatch and Routing.
Event driven automatic pump blocking
Included in both levels:
IOS and Android supported App interface
A central online tracking tool of all connections
Remote connectivity of AquaProg via Ethernet.
A Parallel viewing and configuration interface
my Presentation 9/21/2016<© Sulzer > | slide 5
AquaWeb Technical solution
Solution in the Cloud.
Windows server Hyper-V.
Windows 2008 R2 Standard edition
Microsoft SQL Server 2008 R2 Web edition
CPU 2X2,4 GHz
RAM 16GB
HD1 75GB
HD2 150GB
Sulzer AquaVision and Repline
All solutions automated.
my Presentation 9/21/2016<© Sulzer > | slide 6
Sulzer’s AquaWeb servers are stored in the cloud.
The system is connected to one of the most stable and fastest fiber nets in the world.
UPS redundancy is guaranteed by hosting company (e.g. Amazon) via diesel powered generators.
Datacenter is fully equipped with HVAC to guarantee around the clock optimal running temperature.
The server redundancy is guaranteed by servers in Europe, USA and Asia.
The Datacenter is professionally built and is constantly supervised by guards and TV-supervising systems.
The hosting company is only working with well-known brands such as Microsoft, Cisco, Dell, HP and IBM.
High data security and availability
SMS, GPRS, 3G
Via a Secure private
APN network
Secure certificate
Https:// protocol
Controllers connected to
Customer’s equipment.
Smartphone for
receiving Push
messages
Mail, Push & SMS
Alarm forwarding via email or
Push notifications.
Reports and charts via email
Any computer
AquaVision™ SCADA software.
AquaWeb website.
Cloud server hosted by C&M.
Alarm list, map, charts et cetera
via internet.
Any computer
Smartphone
Android or iPhone
User
Any phone for SMS
APN - Access
- Point
- Name
my Presentation 9/21/2016<© Sulzer > | slide 7
SMS connected units are to report in every 24 h, if not the server will try to call the SMS alarm unit.
All GPRS / 3G connected units has an automatic heartbeat check every 30 minutes. Not just TCP IP connect but actual data transfer check.
If failed contact from either side a re-boot of the communication is initiated and a new test executed. If failed is an alarm sent out!
High data security and availability
Sulzer has put in great effort to secure the availability
and access of the whole AquaWeb system.
The system has built in check and monitoring routines
to increase data availability and if anything out of the
ordinary happens it will quickly detect and notify of
what and where the problem is located.
Station controller availability check
my Presentation 9/21/2016<© Sulzer > | slide 8
AquaWeb Technical solution
40 PowerShell scripts running for administration,
security and notifications such as:
Check system status. With action handling.
If tunnels are alive. With action handling
If Substations are connected. With action handling.
Check sensitive disk space. With action handling
Check databases. With action handling
Check SQL agent. With action handling.
Control logg files Webserver, AquaVision, Windows,
SQL Server and tunnel software logs.
Status Emails to C&M Tech_support.
Push messages in case of errors to admin John
Wikfors 24/7/365.
Full admin access 24/7/365 via Remote desktop.
Push messages to admin
Emails to C&M Tech_support
my Presentation 9/21/2016<© Sulzer > | slide 9
AquaWeb Technical solution
Secure backup solution for customer data.
T-SQL Scrips for backup on cloud server.
PowerShell script to zip and send backups to Linux ftp server.
PowerShell script on local server in Johanneshov for download
databases.
PowerShell script on local server to restore databases + run
check.
Full backup weekly.
Differential backup daily.
All actions supervised with alarm functionality.
Download backed databases to Johanneshov daily.
Local Windows 2008 R2 server with SQL Express for restore + check of databases + storage.
Linux FTP for security reasons.
Need for a middle layer
and for security reasons
no FTP functionality on Windows server
my Presentation 9/21/2016<© Sulzer > | slide 10
AquaWeb Technical solution
Different software's such as virtual serial ports.
VPN connections for GPRS/3G traffic.
SMS with Alarm notifications via SMSC Telenor over
TCP/IP sockets.
External email solution for sending out email with
reports and alarms to Sulzer SU and customers.
Virtual Serial communication to Johanneshov
IPSec tunnel to Telenor
Emails & SMS to Sulzer SU and customers
Substations communicate with AquaWeb via GPRS/3G
Alarmtransmitter communicate via SMS with AquaWeb
my Presentation 9/21/2016<© Sulzer > | slide 11
AquaWeb Technical solution
Push technology for sending out push notifications to customers.
Apps on Google Play and App store for tablets and smartphones.
Unique functionality with acknowledge possibility; meaning respond
to sender.
Substations communicate with AquaWeb
Push notification to customer
my Presentation 9/21/2016<© Sulzer > | slide 12
AquaWeb Technical solution
Over https:
my Presentation 9/21/2016<© Sulzer > | slide 13
Telenor Connexion and AquaWeb
APN aquaweb.cxn
Local operator
Settings override
Telenor settings
Telenor
Connexion
Handeling traffic
with correct APN
Telenor Connexion SMSC
A Secure Data Communication Set-Up
Access via VPN AquaWeb Cloud
based Server