Project background
According to the requirements of higher authorities, a domestic finance and taxation department recently carried out IT infrastructure transformation. In order to improve the availability of the server system and the deployment efficiency of new applications, after full testing, we decided to adopt advanced and efficient virtualization technology and put forward the following strict requirements.
Realization process
Dalian Aoyuan Electronics Co., Ltd. divides the project into four stages, and carries out planning (P), implementation (D), testing/inspection (C) and improvement (A) at each stage.
The first stage, POC concept verification.
At this stage, firstly, information is provided to users to lay the foundation for the next non-critical business production; Secondly, it is to let users know the characteristics and limitations of virtualization software, which is convenient for making the next implementation plan; Finally, in fact, the process of POC is also a test of the professional ability of our company by users.
In the second stage, build a virtualized environment and put it into use for non-critical business.
At this stage, the key point is to test the stability and overload resistance of the system. Users have selected some development and test applications to run in a virtualized environment, and some tests are stress simulation. Through the long-term overload operation of these tasks, it is expected to fully expose some shortcomings of the system and facilitate the subsequent implementation and improvement.
The third stage, virtualization environment optimization, key business pre-launch testing.
The focus of this stage is to further optimize the system architecture, including reconstructing the virtualized environment from the perspectives of network, storage, server and security; Secondly, simulate various fault situations and test the fault tolerance of virtualized environment; Finally, make all kinds of emergency plans to recover quickly when the fault occurs.
The fourth stage, debugging and operation and maintenance of key business, after the above three stages, the launch of key business systems is actually a one-time thing. However, if the virtualized environment is to be used well, it is necessary to establish the corresponding operation and maintenance mechanism. Therefore, in the final stage of the project, we established the operation and maintenance configuration management specification of the production environment with users, including configuration library, change process, fault response strategy, etc.
Practice of high availability technology
As a finance and taxation department, the biggest concern is business interruption, because it is difficult to make up for the economic and social losses caused by the suspension of key business. In order to prevent the occurrence of downtime, on the one hand, in the choice of maintenance time, several days are designated as maintenance days every year, except for these days, maintenance operations that may affect the continuity of the system are prohibited. On the other hand, financial institutions usually choose dual redundant architecture in the choice of IT architecture to ensure that even if there is a fault, the system will automatically switch to the standby system.
After applying virtualization technology, users can use vMotion technology to switch business from one server to another without stopping business. Similarly, Storage vMotion technology can be used to migrate applications from one storage device to another without downtime. From then on, the maintenance of servers and storage devices can be carried out on non-maintenance days.
After applying virtualization technology, the application can achieve zero downtime by using FT technology. Under the traditional dual-redundancy architecture, when there is a fault, it takes a period of time for the application to close and restart from the main server, which varies according to the application type and fault type, during which users cannot access the application. FT technology eliminates this time. After setting FT protection for one virtual machine, a shadow virtual machine will be automatically generated on another server, and the status of the two virtual machines will be synchronized in real time. When something goes wrong, the shadow virtual machine will automatically upgrade to provide services for the main virtual machine, without shutting down and restarting the application, thus achieving zero downtime. Case study of public education information system of a district education bureau
I. Background and requirements
After several years of use, the information publishing website, personnel salary system and epidemic reporting system of a district education bureau have been affirmed by superiors and recognized by teachers to a certain extent, and a large number of important data on teaching, management and epidemic situation have been accumulated in various systems. However, due to the earlier construction of the above-mentioned software system, it is difficult to meet the new requirements of the "Standards for Strengthening a Province by Software" issued by the Provincial Department of Education in terms of technical architecture, functions and application coverage. Therefore, it is planned to upgrade the above-mentioned application software system in a unified way, so that it can not only meet the requirements of the higher authorities for the network teaching and research, teacher information management and education application support platform, but also ensure the lossless migration of the original data and the continuation of a large number of teachers' usage habits.
According to the demonstration of relevant informatization experts, the informatization system of the Education Bureau should be planned and unified as a whole to ensure the consistent coordination of teaching software, management software and educational resource platform, so as to provide a strong resource environment and technical guarantee for the further development of education in the whole region.
Second, the solution
1. Education application support platform based on SOA architecture: including platform bottom support, resource integration support, data exchange support, content management support, business integration support, message transmission support, security protection support and other components. The platform provides a variety of teaching management services such as network teaching and research system, teacher information management system and epidemic reporting system, and has the functions of single sign-on, authority classification, CMS content management and publishing. Not only can it exchange data with third-party software, but it can also be imported into the educational resource pool accumulated by various systems for a long time, so that these resources can be used by teachers and students in the whole region and play the greatest role;
2. Choose the teacher information management system: it mainly includes the basic information management, contract information management, salary information management, personal information management and comprehensive inquiry management of teachers.
3. Choose online interactive teaching and research system: it mainly includes collection management, teaching and research activities, teacher's studio, topic channel, collaboration group channel, special activity channel and other functional modules.
Third, the implementation effect.
1. Teaching resources, teaching information and teaching ideas at different times and places are gathered in one place through the information network. Realize the exchange and sharing of resources in teaching process, teaching resources, teaching evaluation and teaching management. Realize the timely, efficient and convenient transmission of teaching information and simplify the process of preparing lessons. Teachers can participate in teaching and research activities without time and place restrictions, improve the quality of teaching and research, and improve the teaching effect.
2. Teachers have online studios, and disciplines have subject spaces, opening up independent theme spaces and displaying article information, picture information, video information and resource information; Provide information search function, which can conveniently collect and search the required information; And can rank the popularity of the article;
3. Track the experience (study experience, work experience, honor information, assessment information) and skills of management teachers, which can be queried by time and school; Providing the maintenance and management of teachers' personal social relations can help us understand the background of teachers' social relations and provide a basis for the optimal allocation of human resources. Make the complicated personnel salary management and statistical analysis of teachers at all levels in the whole region convenient and standardized, attract outstanding teachers, and promote the overall personnel salary management level of teachers to gradually improve; At the same time, the data in the original system will be imported into the new system without loss.
4. Automatically calculate the teacher's post salary according to the teacher's personnel information, and can summarize the information and output various reports; Provide an Excel table for exporting query result information, which is convenient for printing and manual adjustment. Project background
In order to further improve administrative efficiency and service capacity, promote the transformation of government functions and promote rapid economic and social development, the district government has vigorously promoted the construction of e-government system, and planned and deployed an integrated application government management system with resource integration as the core. The core system construction includes the initial realization of three parts: data exchange, data flow engine and data resource management system. According to the master plan, data exchange, data flow engine and data center construction are the basis for realizing "interconnection and information sharing" in the application layer of e-government, and also the supporting system for realizing document exchange and parallel approval.
Implementation planning
Based on the mature and advanced SOA architecture, the system enables the government portal to interact and integrate data with the websites of lower-level governments and committees, build an online government, and realize a brand-new government portal and network management system platform, including government information release, online office acceptance, and "one-stop service" for the public and enterprises.
Construction principle
The first principle of safety and reliability: the information processed, transmitted and managed by data exchange, data flow engine and data center system may involve secret or sensitive information such as government, enterprises, social economy and personal privacy. If there is a loophole in any link of this information processing and transmission, its loss will be huge. Therefore, the security of the system will be a very important principle. Secondly, data exchange, data flow engine and data center system bear the flow, exchange and storage of a large number of key data, and the reliability of the system will be the key issue to be considered in system construction.
Principle of economy and practicality: Ensure that the system has a friendly user interface, is easy to master, use and maintain, and can solve specific practical problems. On the premise of ensuring the system performance and meeting the requirements, make the system investment as little as possible.
Flexible and efficient principle: ensure that the system has good system performance, high processing efficiency, flexible configuration and use, and fast response.
Advanced and normative principles: advanced and mature data platform products in line with international standards are adopted to make the system have a high technical level and a long life cycle. At the same time, it has good openness, reliability and expansibility. At the same time, the development of customized process control and document standardization should follow the corresponding international standards, national standards and practices.
Investment protection principle: protect the investment of original business systems and database systems to the maximum extent, make full use of the information resources collected by existing and future business systems, and provide standard or customized interface support for data exchange and storage of these business systems on the data flow engine and data center system.
The principle of unified planning, step-by-step implementation and quick results: Because data exchange, data flow engine and data center system involve many contents, there are also many systems and services that need to be integrated. In order to achieve immediate results, we should adopt a step-by-step implementation method, configure and customize development under unified planning.