PI Performance Monitor Interface
From SCADApedia
OSIsoft's PI Performance Monitor Interface will record Windows Performance Monitor data from one or more Windows PC's and can forward selected events to a PI Server. Windows Performance Monitor can log or display vital information about the system including processor usage, memory usage, disk usage and network traffic.
Contents |
Windows Performance Monitor
The Windows NT 4.0, Windows 2000, Windows XP, Windows 2003, Windows Vista and Windows 2008 operating systems contain the Windows Performance Monitor. This tool provides detailed system information to administrators and users. The Windows Performance Monitor can be setup to graphically represent the use and performance of a system. Data can be collected from numerous system sources including the following: processors, memory, hard drives, network devices, jobs, swap space. Using these data points, an administrator can assess the overall health of a workstation or server.
PI Performance Monitor Interface
The PI Performance Monitor Interface (PerfMon) records Windows Performance Monitor counters from one or more Windows systems.
- PI PerfMon interface will run on Windows NT4, 2003, XP and 2003 operating systems.
- OSIsoft provides a basic version of the PI PerfMon which runs only on the PI Server and only collects 512 points.
- A full version is available that will run on a PI Interface Node and can monitor an unlimited number of points.
Individual points are defined as follows:
- Location 1 = Used to specify the interface number which corresponds to the /id=# parameter.
- Location 4 = Scan class for the PI Point. The scan class determines the frequency that the points are scanned.
- Extended Description = Specifies the performance counter path. A performance counter path uses the following format: \\Machine\PerfObject\Counter
PI Performance Monitor Interface in Portaledge Attack Detection
The PerfMon interface can be used to log system usage statistics. An increase in network traffic, processor or memory usage may be indicative of increased activity on the control network, an attack or malware. The Portaledge project can make use of these events to detect and correlate attacks.
