A New Network Architecture

Download Report

Transcript A New Network Architecture

Core Network Services
Robin Tasker
10 May 2013
Network Performance
Network Performance
The Way We Were
Atlas
2*10G LHC OPN
Primary and Secondary
2*10G Janet
Primary and Secondary
UKLR
SAR
LHC Tier 1
Centre
F/W
A
RAL Site
And the Strategic Shortcomings
A Technical Design Authority for the Network
The Network Technical Design Authority (TDA) is responsible for establishing
and maintaining the overall technical architecture of the Core Network so
that it might be developed and operated in a manner which is consistent with
the strategic goals of the STFC, and remains fit for purpose in the light of the
evolving demands of its user base.
The TDA reports to the IT Operations Board (ITOB) and to the Information
Management & Technology Strategy and Oversight Committee (IMTSOC).
Requirements of a National Laboratory
A New Network Architecture
Science & Facilities
Tenants
Visitors
General RAL Site
Access
Access
Internal Site Distribution
Access
Security
Security
Site Security Infrastructure
Security
(Campus and) Site Access and Distribution
Commercial ISPs
HSIC
JANET
JANET Lightpath
Implementing a New Network
A New Network Architecture
Science & Facilities
Tenants
Visitors
General RAL Site
Access
Access
Internal Site Distribution
Access
Security
Security
Site Security Infrastructure
Security
(Campus and) Site Access and Distribution
Commercial ISPs
HSIC
JANET
JANET Lightpath
FY2011-12 (£350k)
1. Janet connectivity increased to resilient 30Gb
2. RAL site geographically resilient
3. New external core routers operating in a resilient
configuration using a 80Gb ring operational June 2012
4. “Big” Data centric “clouds” being migrated to the new
infrastructure: LHC Tier 2 migrated, JASIM/CEMS in
advanced stages, British Atmospheric Data Centre and LHC
Tier 1 started
Implementing a New Network
A New Network Architecture
Science & Facilities
Tenants
Visitors
General RAL Site
Access
Access
Internal Site Distribution
Access
Security
Security
Site Security Infrastructure
Security
(Campus and) Site Access and Distribution
Commercial ISPs
HSIC
JANET
JANET Lightpath
FY2012/13 (£200k)
1. RAL Firewall re-procurement to provide 40Gb throughput in
HA configuration
2. Fortinet Fortigate-3240C firewall selected and procured
3. Implementation planning underway with target operational
service in summer 2013
FY2011-12 (£350k)
1. Janet connectivity increased to resilient 30Gb
2. RAL site geographically resilient
3. New external core routers operating in a resilient
configuration using a 80Gb ring operational June 2012
4. “Big” Data centric “clouds” being migrated to the new
infrastructure: LHC Tier 2 migrated, JASIM/CEMS in
advanced stages, British Atmospheric Data Centre and LHC
Tier 1 started
Implementing a New Network
FY2013/14 (£130k)
1. Focus: internal RAL network: to dis-aggregate complex
configurations; to provide a simple IP routed environment
2. Review (and replace) Nortel stacked switches and routers to
provide appropriate, i.e. modern, technology to level
performance needs and based on reliability assessment
3. Introduce better instrumentation through the network
A New Network Architecture
Science & Facilities
Tenants
Visitors
General RAL Site
Access
Access
Internal Site Distribution
Access
Security
Security
Site Security Infrastructure
Security
(Campus and) Site Access and Distribution
Commercial ISPs
HSIC
JANET
JANET Lightpath
FY2012/13 (£200k)
1. RAL Firewall re-procurement to provide 40Gb throughput in
HA configuration
2. Fortinet Fortigate-3240C firewall selected and procured
3. Implementation planning underway with target operational
service in summer 2013
FY2011-12 (£350k)
1. Janet connectivity increased to resilient 30Gb
2. RAL site geographically resilient
3. New external core routers operating in a resilient
configuration using a 80Gb ring operational June 2012
4. “Big” Data centric “clouds” being migrated to the new
infrastructure: LHC Tier 2 migrated, JASIM/CEMS in
advanced stages, British Atmospheric Data Centre and LHC
Tier 1 started
A Design for Life
Data Centric
Cloud
R89
30G Janet Secondary
D1
10G LHC OPN Secondary
Facility
F
R2
R4
S2
F/W
A
Atlas
30G Janet Primary
R1
R3
Department
S1
F/W
10G LHC OPN Primary
C
T1
LHC Tier 1
Centre
Department
Reorganising Service Delivery
Mapping the New Landscape
TDA-2012-XX
RAL CORE NETWORK
LHCOPN
JANET
Commercial
KEY TO ROUTED NETWORK
JANET
JASMIN
OPN’s
External Core
Commercial
Internal Core
LHC Tier 1
LHC Tier 2
BADC
STFC Tenants
JASMIN / CEMS
ISIC
SSTD
RC@H
ISIS
DLS Admin
LHC Tier 1
LHC Tier 2
BADC
JASMIN
CEMS
JANET BCE
CICT
Legacy STFC Innovations
PPD
DMZ
DLS Science
CLF
ISIC
Atlas R89
ISIS
LHCOPN
JASMIN OPN’s
Router
CLF
Location
SSTD
DLS Admin
RC@H
PPD
CLF
8 February 2013
DLS Science
ISIC