20111003-boyd-NDDI
Download
Report
Transcript 20111003-boyd-NDDI
October 3, 2011
Advanced Network Services
Tomorrow
Advanced Network Services –
Today and Tomorrow
• Advanced Network
Services - Today
–
–
–
–
Yesterday!
Current Services
Operations Status
Upgrade Overview
2 – 4/2/2016, © 2009 Internet2
• Advanced Network
Services - Tomorrow
–
–
–
–
Today!
Initiatives
Current development
Next steps
Seven strategic focus areas
Advanced network and
network services leadership
Internet2 Net+:
services “above the network”
U.S. UCAN
National/Regional collaboration
Global reach and leadership
Research community development
and engagement
Industry partnership development
and engagement
3 – 4/2/2016, © 2011 Internet2
The New Internet2 Network
••
••
••
••
Upgraded
100
Gbps
IP/MPLS/ION
Juniper T1600’s
New 17,500
mile
community
ownedNetwork
20+ yearwith
IRU10network
Upgraded
peering
service6500
network
with 6with
Juniper
MX960’ssites
88 wave 8.8
Tbps Ciena
optronics
55 add/drop
Deployment
of afrom
new Sunnyvale
Layer 2 service
on NDDI/OS3E
network
Just completing
to Chicago
to Washington
to New York
Enhanced
programs
and support
Remainderresearch
of the network
delivered
by this time next year
Agenda
• Research Partnership and Engagement
– NDDI/OS3E
– Campus Support for Data Intensive Science
– Performance Initiatives / Performance Portal
• Global Reach and Leadership
– R&E Networking in the Global Arena
– International Exchange Points
– NSF-Funded International Links (IRNC)
5 – 4/2/2016, © 2011 Internet2
Network Development and
Deployment Initiative (NDDI)
Partnership that includes Internet2, Indiana University, &
the Clean Slate Program at Stanford as contributing
partners. Many global collaborators interested in
interconnection and extension
Builds on NSF's support for GENI and Internet2's BTOPfunded backbone upgrade
Seeks to create a software defined advanced-servicescapable network substrate to support network and
domain research [note, this is a work in progress]
Components of the NDDI Substrate
30+ high-speed Ethernet switches deployed across
the upgraded Internet2 network and interconnected
via 10G waves
A common control plane being developed by IU,
Stanford, and Internet2
Production-level operational support
Ability to support service layers & research slices
48 x 10G SFP+
4 x 40G QSFP+
1.28 Tbps non-blocking
1 RU
The NDDI Control Plane
The control plane is key to placing the forwarding
behavior of the NDDI substrate under the control of
the community and allowing SDN innovations
Eventual goal to fully virtualize control plane to
enable substrate slices for community control,
research and service development
Will adopt open standards (e.g., OpenFlow)
Available as open source (Apache 2.0 License)
Layer-2 WAN
(OS³E)
Feature
Layer-3 WAN
(OSRF)
Feature
New
Service
At-Scale Testbed
(GENI)
Experiment Experiment Experiment
NDDI Substrate
Today
Future
Open Science, Scholarship and
Services Exchange (OS3E)
An example of a community defined network service
built on top of the NDDI substrate.
The OS3E will connect users at Internet2 POP’s with each
other, existing exchange points and other collaborators
via a flexible, open Layer 2 network.
A nationwide distributed Layer 2 “exchange”
Persistent Layer 2 VLANs with interdomain support
Production services designed to support the needs of
domain science (e.g., LHCONE, etc.)
Will support open interdomain standards
Initially IDC, eventually NSI
Available as open source (Apache 2.0 License)
OS3E Service Description
• This service is being developed in response to the request from the
community as expressed in the report from the NTAC and
subsequent approval by the AOAC.
• Service Description
– Best effort service
– National Ethernet Exchange Service (Layer 2)
• User Provisioned VLANs (WebUI or API)
• Time-Limited and Persistent VLANs
– Different price points for hairpin service and inter-node service
– Open access policy
– Underlying wave infrastructure will be augmented as needed using the
same general approach as used in the IP network.
– Inter-Domain Provisioning
– Built on SDN: Open/Flexible Platform to Innovate
OSE Key Features
• Develop once, implement on many different
switches
• VLAN Provisioning Time: < 1 sec
• Automated Failover to Backup Path
• Controller Redundancy
• Auto Discovery of New Switches & Circuits
• Automated Monitoring
4/2/2016
12
OS3E Use Cases
Dedicated Bandwidth for Large File Transfers or
Other Applications
Layer-2 Connectivity Between Testbeds
Redundancy / Disaster Recovery Connectivity
Between Internet2 Members
Connectivity to Other Services
e.g. Net+ Services
OS3E / NDDI Timeline
April, 2011
May-September
Early Program Announcement
Hardware, Controller selection
Substrate development
October, 2011 First Deployment and National Demo
Link Policy & funding discussion
Next site group selection
iNDDI engagement
November, 2011
Expanded Deployment
Inter-domain capabilities
December, 2011
Initial release of NDDI software
January, 2011
Large scale national deployment
Support for Network Research
OS3E: Layer-2 Interconnect for Testbeds and
Experiments
OS3E: Open Platform for Evolving the Network
NDDI substrate control plane key to supporting
network research
At-scale, high performance, researcher-defined network
forwarding behavior
Virtual control plane provides the researcher with the
network “LEGOs” to build a custom topology employing a
researcher-defined forwarding plane
NDDI substrate will have the capacity and reach to
enable large testbeds
Making NDDI global…
Substrate will support IDC (i.e., it will be interdomain capable)
Expect interconnection with other OpenFlow
testbeds as a first step (likely staticly)
While the initial investors are US-based, NDDI
seeks global collaborators on the substrate
infrastructure as well as control plane features
Currently collecting contact information for
those interested in being a part of NDDI
please send e-mail to [email protected]
“Open”
• Although it may be disruptive to existing business models, we
are committed to extending a policy-free approach
• Each individual node should function like an “exchange point”
in terms of policy, cost, capabilities
• Fully distributed exchange will operate as close to exchange
point as possible given constraints: i.e. transport has
additional associated costs
– Inter-node transport scalability and funding needs discussion
– Initially, an open, best effort service
– Potential to add a dedicated priority queuing feature
• Internet2 would like to position this service on the forefront
of pushing “open” approaches in distributed networks.
NDDI & OS3E
18 – 4/2/2016, © 2011 Internet2
NDDI & OS3E
19 – 4/2/2016, © 2011 Internet2
NDDI & OS3E
20 – 4/2/2016, © 2011 Internet2
NDDI / OS3E Implementation Status
• Deployment
– NEC G8264 switch selected for initial deployment
– 4 nodes installed (NYC, DC, Chicago, LA)
– 5th node (Seattle) by SC
• Software
– NOX OpenFlow controller selected for initial implementation
– Software functional to demo Layer 2 VLAN service (OS3E) over
OpenFlow substrate (NDDI) by FMM
– Software functional to peer with ION (and other IDCs) by SC11
– Software to peer with SRS OpenFlow demos at SC11
– Open source software package to be made available in 2012
21 – 4/2/2016, © 2011 Internet2
4/2/2016
22
OS3E / NDDI Demo
Getting Connected:
•Deployment of additional switches on demand.
•Internet2 NOC will deploy switch and circuits, and tie them
into the OS3E software
•After switch deployment, work with Internet2 NOC to get
OS3E account(s), workgroup created
•Begin creating circuits using OS3E web interface or API
Demo
23 – 4/2/2016, © 2011 Internet2
OS3E / NDDI Demo
Try out the OS3E UI: http://os3e.net.internet2.edu/
user: os3e password: os3edemo
24 – 4/2/2016, © 2009 Internet2
OS3E Costs and Fees
• We understand the costs.
• There will likely be graduated fees:
– A fee for connectors only wishing to peer with other
connectors on the same switch.
– A greater fee for connectors wishing to utilize the
network interconnecting these exchange facilities.
• It is hard at this point to suggest exact fees, they
could be adapted depending on the adoption
levels.
• This discussion is more about gathering
information from the community.
Agenda
• Research Partnership and Engagement
– NDDI/OS3E
– Campus Support for Data Intensive Science
– Performance Initiatives / Performance Portal
• Global Reach and Leadership
– R&E Networking in the Global Arena
– International Exchange Points
– NSF-Funded International Links (IRNC)
26 – 4/2/2016, © 2011 Internet2
ION
• ION
– Shared VLAN service across the Internet2 backbone
– Implemented as combination dedicated / scavenger service atop the
Layer 3 infrastructure
– Implements IDC protocol
– Implemented with OSCARS and perfSONAR-PS
• What’s new (October, 2011)
– Modified ION to be a persistent VLAN service
– Integrated with ESnet SDN, GÉANT AUTObahn, and USLHCnet as part
of DICE-Dynamic Service
• What’s planned (late 2011)
– As DYNES service rolls out, ION is the backbone linking the various
regional deployments
– Peer ION with OS3E in a few locations, run both services in parallel
– Campus / Regional IDCs can also peer with OS3E
27 – 4/2/2016, © 2011 Internet2
DYNES
• DYNES (NSF #0958998) = Enable dynamic circuit services
end to end
– Deploy equipment at the regional and campus levels
– Based on OSCARS to control circuits, FDT to move data,
perfSONAR to monitor performance
– Funding – May 2010 – May 2013
– Emphasis to enable this service for scientific use
• Current Status
– Through with our first deployment group, into testing of the
software and hardware
– Configuring second group, shipments have started
– Third group in planning stages
28 – 4/2/2016, © 2011 Internet2
DYNES Projected Topology (Fall 2011)
• Based on applications accepted
• Showing peerings to other Dynamic Circuit Networks (DCN)
29 – 4/2/2016, © 2011 Internet2
DYNES Deployment Status
• Group A – Fully deployed, still undergoing testing
(Caltech, Vanderbilt, UMich, MAX, Rutgers, UDel, JHU,
SOX, AMPATH)
• Group B – Configuring now, deployment expected fall
(TTU, UTA, UTD, SMU, UH, Rice, LEARN, MAGPI,
UPenn, MREN, UChicago, UWisc, UIUC, FIU)
• Group C – Late Fall/Winter configuration expected,
deployment and testing into next year (UCSD, UCSC,
UNL, OU, UIowa, NOX, BU, Harvard, Tufts, FRGP,
UColorado)
30 – 4/2/2016, © 2011 Internet2
LHCONE Status
• LHCONE is a response to the changing dynamic of
data movement in the LHC environment.
• It is composed of multiple parts:
– North America, Transatlantic Links, Europe
– Others?
• It is expected to be composed of multiple
services
– Multipoint service
– Point-to-point service
– Monitoring service
LHCONE Multipoint Service
• Initially created as a shared Layer 2 domain.
• Uses 2 VLANs (2000 and 3000) on separate
transatlantic routes in order to avoid loops.
• Enables up to 25G on the Trans-Atlantic routes for
LHC traffic.
• Use of dual paths provides redundancy.
LHCONE Multipoint Service
4/2/2016
33
LHCONE Multipoint service in
L3 TransAtl Thoughts
North
America
Sonet Circuit
OC-192 Sonet Interface
Undetermined interface type
10 Gig WAN PHY Interface
MAN LAN
Brocade Switch vlan 2000
Bonded
ACE Circuits
Core
Director
vlan 3000
Amsterdam
vlan 2000
USLHC
Core
Director
T1600
Geant
vlan 3000
USLHCNET Circuit
USHC
Core
Director
NetherLight
vlan 2000
vlan 3000
T1600
New York
VPLS
Routing
Instance
vlan 2000
vlan 3000
T1600
Chicago
LHCONE Point-to-Point Service
• Planned point-to-point service
• Suggestion: Build on efforts of DYNES and DICEDynamic service
• DICE-Dynamic service being rolled out by ESnet,
GÉANT, Internet2, and USLHCnet
– Remaining issues being worked out
– Planned commencement of service: October, 2011
– Built on OSCARS (ESnet, Internet2, USLHCnet) and
AUTOBAHN (GÉANT), using IDC protocol
4/2/2016
35
LHCONE Monitoring Service
• Planned monitoring service
• Suggestion: Build on efforts of DYNES and
DICE-Diagnostic service
• DICE-Diagnostic service, being rolled out by
ESnet, GÉANT, and Internet2
– Remaining issues being worked out
– Planned commencement of service: October, 2011
– Built on perfSONAR
4/2/2016
36
DYNES/ION and LHCONE
• Simple to integrate DYNES/ION and LHCONE point-topoint service
• Possible to integrate DYNES/ION and LHCONE
multipoint service?
– DYNES / LHCONE Architecture team discussing ways to
integrate DYNES functionality with LHCONE
– It is expected that point to point connections through
DYNES would work …
– Possible to position DYNES as an ‘onramp’ or ‘gateway’ to
the multipoint service?
• Glue a dynamic connection from a campus (through a regional)
into the VLAN 2000/3000
• Requires some adjustments to the DYNES end-site addressing and
routing configurations to integrate into LHCONE multipoint layer2
environment
• Would allow smaller T3 sites in the US instant access as soon as
they get their DYNES gear.
37 – 4/2/2016, © 2011 Internet2
Campus Support for
Data Intensive Science
• Current Network Regime: A big wall around a
network of laptops administered by students
– Breaks the end-to-end model
– Performance tuned for small flows
– Security in the net
• Augmented Network Regime:
–
–
–
–
4/2/2016
Area in the network where science is supported
Reinstate the end-to-end model
Performance tuned for large flows
Security at the node, not in the net
38
Network Issues for
Data Intensive Science
• Flow Type Co-Mingling
• “Fair” Transport Protocols (Congestion
Control)
• Lack of Network Awareness by Application /
Middleware
• Firewall Limitations
• Network Elements with Small Buffers
4/2/2016
39
Network Solutions for
Data Intensive Science
• Dedicated transfer nodes
– High performance systems
• Suite of software
• Specialized performance-focused configurations
• Dedicated transfer facilities
– Dedicated transfer nodes
– Associated networking equipment
– Networking connections
• Network Solutions
– Internet2 IP service, NDDI, OS3E, ION
4/2/2016
40
Implementing Network Support for
Data Intensive Science
Fig
ure
1
LS
TI
Sol
uti
on
Op
tio
n
Sp
ace
4/2/2016
41
Agenda
• Research Partnership and Engagement
– NDDI/OS3E
– Campus Support for Data Intensive Science
– Performance Initiatives / Performance Portal
• Global Reach and Leadership
– R&E Networking in the Global Arena
– International Exchange Points
– NSF-Funded International Links (IRNC)
42 – 4/2/2016, © 2011 Internet2
Performance Architecture
Analysis &
Visualization
Analysis &
Visualization
API
Measurement
Infrastructure
Measurement
Infrastructure
API
Data
Collection
Performance
Tools
43 – 4/2/2016, © 2009 Internet2
Performance Infrastructure
• perfSONAR is performance middleware,
designed to integrate performance monitoring
tools across a wide range of networks
• perfSONAR is or will soon be widely deployed
across campuses, regional networks,
backbone networks, and transoceanic links
• Layer 2 and Layer 3 data gathering tools are or
will soon be widely deployed across multiple
networks
4/2/2016
44
Performance Use Cases
• CIO/CEO wants to see global view of network
activity and performance comparisons with other
networks.
• End user wants to look at a network weather map
to determine if there are currently ‘storms’ in the
area.
• End user wants to evaluate if a specific
applicationthey want to use is likely to work or
not.
• Network engineer wants to diagnose local or
inter-domain network performance problems.
4/2/2016
45
Performance: What’s Missing?
• Analysis and visualization tools
• Collective support for Inter-domain
performance problems
– Help desk
– Training classes
4/2/2016
46
Performance:
A vision for the future
• We intend to bring together the missing
components in the form of a comprehensive
performance program
– Performance portal
– Monitoring as an integral component of Campus
Support for Data Intensive Science
– Data collection integrated into network services
– Community engagement in collective problem of
end-to-end performance
4/2/2016
47
Agenda
• Research Partnership and Engagement
– NDDI/OS3E
– Campus Support for Data Intensive Science
– Performance Initiatives / Performance Portal
• Global Reach and Leadership
– R&E Networking in the Global Arena
– International Exchange Points
– NSF-Funded International Links (IRNC)
48 – 4/2/2016, © 2011 Internet2
Seven strategic focus areas
Advanced network and
network services leadership
Internet2 Net+:
services “above the network”
U.S. UCAN
National/Regional collaboration
Global reach and leadership
Research community development
and engagement
Industry partnership development
and engagement
49 – 4/2/2016, © 2011 Internet2
R&E Networking in the Global Arena
• Campuses and researchers feel the need to think
globally, not locally
– Requires a strategic focus by Internet2
• Global architecture needs to be more cohesive
– Work intentionally in partnership on global
network capacity
• Services need to be global in scope
– Support for Data intensive science
– Telepresence
– International Campuses
50 – 4/2/2016, © 2011 Internet2
Agenda
• Research Partnership and Engagement
– NDDI/OS3E
– Campus Support for Data Intensive Science
– Performance Initiatives / Performance Portal
• Global Reach and Leadership
– R&E Networking in the Global Arena
– International Exchange Points
– NSF-Funded International Links (IRNC)
51 – 4/2/2016, © 2011 Internet2
MAN LAN
• New York Exchange Point
• Ciena Core Director and Cisco 6513
• Current Connections on the Core Director:
– 11 OC-192’s
– 9 1 Gig
• Current Connection on the 6513
– 16 10G Ethernets
– 7 1G Ethernet
MAN LAN Roadmap
• Switch upgrade:
– Brocade MLXe-16 was purchased with:
• 24 10G ports
• 24 1 G ports
• 2 100G ports
– Internet2 and ESnet will be connected at 100G.
• The Brocade will allow landing transatlantic
circuits of greater then 10G.
• An IDC for Dynamic circuits will be installed.
– Comply with GLIF GOLE definition
MAN LAN Services
• MAN LAN is an Open Exchange Point.
• 1 Gbps, 10 Gbps, and 100 Gbps interfaces on the
Brocade switch.
– 40 Gbps could be available by 2012.
• Map dedicated VLANs through for Layer2 connectivity
beyond the ethernet switch.
• With the Brocade the possibility of higher layer
services should there be a need.
– This would include OpenFlow being enabled on the
Brocade.
• Dynamic services via an IDC.
• perfSONAR-ps instrumentation.
Agenda
• Research Partnership and Engagement
– NDDI/OS3E
– Campus Support for Data Intensive Science
– Performance Initiatives / Performance Portal
• Global Reach and Leadership
– R&E Networking in the Global Arena
– International Exchange Points
– NSF-Funded International Links (IRNC)
55 – 4/2/2016, © 2011 Internet2
Agenda
• Research Partnership and Engagement
– NDDI/OS3E
– Campus Support for Data Intensive Science
– Performance Initiatives / Performance Portal
• Global Reach and Leadership
–
–
–
–
R&E Networking in the Global Arena
Manhattan Landing Exchange Point (MAN LAN)
Washington DC International Exchange Point (WIX)
NSF-Funded International Links (IRNC)
56 – 4/2/2016, © 2011 Internet2
IRNC Program
• International Research Network Connections (IRNC) is an NSF
Office of Cyberinfrastructure program to enable collaboration,
in the research and education community, on a global scale.
– These grants facilitate hardware and software solutions to foster
access to remote instruments, data, and computational resources
located throughout the world.
• Internet2 was awarded 2 IRNC Special Projects awards in May
of 2010:
– Integrate IRNC-funded links into distributed monitoring
framework available across R&E networks
– Integrate IRNC-funded links into dynamic circuit framework
available across R&E networks
57 – 4/2/2016, © 2011 Internet2
GLIF 2011 - Topology
58 – 4/2/2016, © 2011 Internet2
Advanced Network Services Tomorrow
October 3rd, 2011, Internet2 Fall Member Meeting
Eric Boyd, Internet2
For more information, visit http://www.internet2.edu/
59 – 4/2/2016, © 2011 Internet2
IRNC SP:IRIS
• NSF Grant # 0962704
• IRIS will provide a software framework to simplify the task
of end-to-end network performance monitoring and
diagnostics
– Based on the widely deployed perfSONAR-PS infrastructure
and protocols
– Facilitates broader deployment of perfSONAR enabled
resources; increasing the likelihood of diagnostic resources
being available along the end-to-end paths
• Integrates with existing deployments on R&E networks
(ESnet, GÉANT, Internet2, Regional and NRENs) as well as
those maintained by scientific VOs (USATLAS, LHCOPN,
eVLBI, REDDnet)
• Will work with IRNC ProNet awardees to customize
deployment for target network functionality
• Target end date is April 2013
60 – 4/2/2016, © 2011 Internet2
IRNC SP:DyGIR
• NSF Grant # 0962705
• DyGIR will provide a component based solution for
scheduling dynamic circuits on IRNC ProNet infrastructure
– Utilizes the OSCARS software suite, developed by ESnet
– Integrates circuit statistics and networking monitoring via
the perfSONAR-PS framework
• Capabilities will integrate with existing backbone networks
(ESnet SDN, GÉANT AutoBAHN, Internet2 ION), as well as
emerging campus deployments (DYNES – an NSF MRI
Funded effort).
• Will work with IRNC ProNet awardees to customize
deployment for target network functionality
• Target end date is April 2013
61 – 4/2/2016, © 2011 Internet2
IRNC Outreach to ProNET Awardees
•
ACE
–
–
•
•
AmLight
–
–
–
–
–
–
•
Participated in Joint demonstration of DYNES and RNP’s Dynamic Circuit Infrastructure at GLIF
IDC available in the AMPATH exchange for use on International Links
perfSONAR-PS monitoring available
GLORIAD
–
•
perfSONAR-PS test points to be available, along with periodic monitoring to select locations
within GEANT
Exploring what makes sense from a dynamic circuit network perspective. Given proximity to
MAN-LAN, a MAN-LAN supported IDC may make an ACE specific one unnecessary.
Discussed current DYGIR and IRIS activities
Currently have ability to create VLANs on infrastructure. Looking to integrate with dynamic
circuit networks over next couple of years.
Exploring current GLORIAD peerings and heavy users to determine what use cases could
benefit from dynamic circuits.
Exploring best way to capitalize on perfSONAR – specifically looking at ways to publish passive
flow data currently collected by GLORIAD using perfsONAR protocols
TransLight/Pacific Wave
–
–
Established working group to install perfSONAR-PS monitoring software at endpoints and
participants in the region
Evaluating dynamic capabilities
TransPAC3
–
–
Have traded topology information and are determining what switches in the infrastructure to put
under dynamic control. Will likely peer with ION and JGN2.
Currently has perfSONAR-PS test points, and periodic tests with APAN
62 – 4/2/2016, © 2011 Internet2