Networks ∙ Services ∙ People www.geant.org Vincenzo Capone LHCOPN-LHCONE meeting – Taipei (TW) GÉANT approach to Cloud R&E traffic 13-14 March 2016 Business.

Slides:

Advertisements

Similar presentations

Janet and Cloud Services Opportunities. Progress on Work AWS Arkivum Sync and Share G-Cloud The Future.

Advertisements

REN Global Peering Phased Approach. ASPAC - AARNET EMEA - NORDUnet Americas – I2 AS2603 AS7575 AS11164 Regional peers GEANT Regional peers EU- NRENS Phase1.

The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.

HEAnet Cloud Compute Update 1.HEAnet Cloud – a Multilayered Strategy 2.HEAnet Cloud Project 3.Cloud Realities 4.Role of the NREN – Why Cloud ? 5.NREN Collaboration.

NORDUnet Nordic Infrastructure for Research & Education Service Sharing at NORDUnet Lars Fischer TF-MSP Meeting Malta, 27 November 2014.

1 Connect | Communicate | Collaborate SA7 IaaS procurement TF-MSP, 18 March 2015, Amsterdam Michel Wets

Toward the Clouds, Together ! Collaboration effort of European NRENs in Cloud Computing Branko Radojević, Deputy Director, CARNet/GEANT TF-MSP Budapest,

INTRODUCTION TO CLOUD COMPUTING CS 595 LECTURE 4.

Networks ∙ Services ∙ People John DYER TF-MSP Video Conference Community Procurement Support Building on the SPOT-ON Proposal Smart Procurement,

NOC Lessons Learned TEIN2 and CERNET Xing Li

FUNDING MODELS Jan Gruntorád CESNET, Czech Republic NATO ANW:The Third CEENet Workshop on Network Management Zagreb, SEPTEMBER 22-25,2002.

Virtual Packet Core Cloud solution for LTE. if you need to construct LTE network for 1mln users... How will it work for operator?

CLOUD COMPUTING  IT is a service provider which provides information.  IT allows the employees to work remotely  IT is a on demand network access.

AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.

Networks ∙ Services ∙ People Sasa Cavara (CARNet) TF-MSP Espoo, Finland Update on SA7 GÉANT Cloud Activity 10th September 2015.

| BoD over GÉANT (& NRENs) for FIRE and GENI users GENI-FIRE Workshop Washington DC, 17th-18th Sept 2015 Michael Enrico CTO (GÉANT Association)

Networks ∙ Services ∙ People Mandeep Saini TF-MSP, Espoo, Finland Service Delivery and Adoption 10 th Sep 2015 Task Leader, GN4-1 SA7 T3.

Networks ∙ Services ∙ People Enzo Capone (GÉANT) LHCOPN/ONE meeting – LBL Berkeley (USA) Status update LHCONE L3VPN 1 st /2 nd June 2015.

This document produced by Members of the Helix Nebula Partners and Consortium is licensed under a Creative Commons Attribution 3.0 Unported License. Permissions.

Authentication and Authorisation for Research and Collaboration Pilots on the Integrated R&E AAI Paul van Dijk, Activity Lead Pilots.

Kiev, NREN in Ukraine: Present State and Future Developments Piotr Sąsiedzki POL-34 Silesian University of Technology Computer Centre Financial.

Networks ∙ Services ∙ People Nicole Harris, GÉANT 45 th TF-CSIRT Meeting, Poznan, Poland Working Group: TI Service Requirements review TF-CSIRT.

NORDUnet Nordic Infrastructure for Research & Education Workshop Introduction - Finding the Match Lars Fischer LHCONE Workshop CERN, December 2012.

Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.

Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.

Ian Bird, WLCG MB; 27 th October 2015 October 27, 2015

Authentication and Authorisation for Research and Collaboration Niels van Dijk AARC General Meeting Authentication and Authorisation.

Authentication and Authorisation for Research and Collaboration Michał Jankowski, Maciej Brzeźniak AARC General Meeting, Milan.

Networks ∙ Services ∙ People Mian Usman LHCOPN/ONE meeting – Amsterdam Status update LHCONE L3VPN 28 th – 29 th Oct 2015.

Supporting education and research Middle East Digital Library Workshop Network Infrastructure Dr Malcolm Read JISC Executive Secretary.

John Dyer Business & Technology Strategist TERENA ASPIRE Project Manager TF-MSP February 2013 ASPIRE Foresight Study

G É ANT2 Development Support Activity and the Republic of Moldova 1st RENAM User Conference Chisinau, Republic of Moldova 14-May-2007 Valentino Cavalli.

LHCONE meeting Welcome Cambridge Meeting 9-10 Feb 2015 Matthew Scott; General Manager GEANT Ltd; GÉANT Programme Manager.

Networks ∙ Services ∙ People Daniela Pöhn REFEDS EWTI, Vienna IdPs and Federations Service Aspects of Assurance SA5T1.

Networks ∙ Services ∙ People Bert van Pinxteren General Assembly, Porto, Portugal Transition to one GÉANT Annual Review June,

NREN Trust and Identity Strategy Ann Harding, SWITCH Cambridge July 2014.

Networks ∙ Services ∙ People Marko Bonač GÉANT General Assembly GÉANT Voting Working Group Recommendations Porto, 18 June 2015.

Networks ∙ Services ∙ People Nicole Harris UK federation meeting eduGAIN, REFEDS and the UK 23 June 2015 Project Development Officer GÉANT.

3rd Helix Nebula Workshop on Interoperability among e-Infrastructures and Commercial Clouds Carmela ASERO, EGI.eu 17 September 2013, Madrid

Networks ∙ Services ∙ People Marina Adomeit FIM4R meeting Virtual Organisation Platform as a Service VOPaaS Nov 30, 2015, Austria Task Leader,

CITYnvest Increasing Capacities in Cities for Innovative Financing in Energy Efficiency Agnieszka Pietruczuk CITYnvest project officer CEMR.

Networks ∙ Services ∙ People Ann Harding GÉANT Symposium, Vienna Users Session A3 Trust and Identity March GÉANT Activity Leader Trust.

Facing the challenge of relevance Erwin Bleumink 4 June 2013 TNC13.

Ian Bird, CERN 1 st February Dec 2015

Networks ∙ Services ∙ People Andrea Biancini #TNC15, Porto, Portugal Implementing Grouper to federate user authorization Federated Authorization.

Networks ∙ Services ∙ People Sonja Filiposka, Yuri Demchenko, Tasos Karaliotas, Migiel de Vos, Damir Regvart TNC 2016 DISTRIBUTED CLOUD SERVICES.

Networks ∙ Services ∙ People Mark Johnston TNC15, Porto Plans in GEANT Innovation on the Production Network 15 th June 2015 Chief Network.

Policy in GÉANT Guy Roberts, Tangui Coulouarn NSI meeting, NORDUnet Conference, Uppsala, 22 Sept 2014.

EGI-InSPIRE EGI-InSPIRE RI EGI Federated Cloud business models and role in HNX Sergio Andreozzi Strategy and Policy Manager.

The Helix Nebula marketplace 13 May 2015 Bob Jones, CERN.

Javier Orellana EGEE-JRA4 Coordinator CERN March 2004 EGEE is proposed as a project funded by the European Union under contract IST Network.

Networks ∙ Services ∙ People Jari Miettinen Andrew Mackarel and Nadia Sluer VC #1 Jan 2016 SCOPE SIG June 8 th 2016.

Networks ∙ Services ∙ People Ann Harding Networkshop 44, Manchester Thinking globally, acting locally Trust and Identity in the GÉANT project.

NORDUnet Nordic Infrastructure for Research & Education NORDUnet’s views on cloud and cloud providers LHCOPN/ONE meeting Taipei, March 2016.

Networks ∙ Services ∙ People Afrodite Sevasti, Activity Leader for Integration with other eInfrastructures in GÉANT (GRNET) Michael Enrico,

Networks ∙ Services ∙ People Di4R Network. Services. People. GÉANT 28 th September, Krakow.

GÉANT Cloud Activity Towards Pan-European Cloud Services

Service Portfolios for Research in Europe

LHCOPN/LHCONE status report pre-GDB on Networking CERN, Switzerland 10th January 2017

How can I participate?.

Best Practices for Cloud Provider Connectivity

CMS ATLAS LHC and Clouds

Wrap-up & discussion EOSC Governance Development Forum workshop:

Task 1 Activities Achievements Pictures

LHCOPN / LHCONE meeting

Anja Burghardt, Institute for Employment Research (IAB)

their business through new product lines

Network Services Evolution and Development

Network Services Evolution and Development

Presentation transcript:

Networks ∙ Services ∙ People Vincenzo Capone LHCOPN-LHCONE meeting – Taipei (TW) GÉANT approach to Cloud R&E traffic March 2016 Business Development Officer

Networks ∙ Services ∙ People Growing demand from the R&E community to use Cloud Services Computing on demand (IAAS) Storage Share & sync SAAS GÉANT is building a framework for the European R&E community to get better access to CS Aggregate demand to get better price Cut the data movement charge costs Peer with providers to get better network performances CERN has issued a tender for acquiring Cloud Computing resources Peering with GÉANT/NREN was a requirement on the providers EMBL-EBI is running a PoC for Cloud integration Likely to start a massive procurement end of 2016 The context

Networks ∙ Services ∙ People Cloud Catalogue Directory on cloud SPs listing their capabilities and how they match the requirements set out by the NRENs Access to IaaS Aggregation of demand from NRENs Tender to be issued 19 th April 2016 No single winner, all qualified provider will join the framework agreement 3 commercial models available to NRENs to make the services available to their connected institutions Referrer (NREN only act as intermediary, facilitating the liaison of the user with the provider Reseller (also involved in contracting and billing of the service) Underwriter (the NREN purchases the service, then re-sell to its users) 3 New/upcoming Cloud services

Networks ∙ Services ∙ People As a general rule, peers are only advertised to customers/connectors, not to other peers (no-transit policy) Partners from outside Europe should be able to reach the Cloud (virtual) user’s resources, like they were physical resources Once a VM is created by an R&E user, then it’s R&E traffic (regardless where it’s hosted) Rented car/owned car problem If you rent a car, you should be allowed to go wherever you could go with your own car! Buying Cloud resources is, to some extent, like “renting” servers (mainly referring to IaaS, here) Users should be enabled to work with them like with any “owned” or in-house server The problem

Networks ∙ Services ∙ People Need to comply with the GEANT/NRENs AUP No commercial-to-commercial traffic But not all NRENs are created equals… Not all the NRENs are willing to enable the transit to commercial entities An Opt-in/out mechanism is needed Not all the partner NRENs outside of GEANT could be willing to receive those prefixes The providers can be connected in a number of ways Direct peering with GÉANT Peering via IX Peering with an NREN The technical solution should be able to accommodate all three kind of connections The requirements

Networks ∙ Services ∙ People A new GÉANT policy is on trial at the moment Triggered by CERN tender Approved by the GÉANT Board as an interim policy A new VRF has been created to accommodate the connection to Cloud Providers Same usual AS number (20965) – unlike the IAS VRF We have an existing VRF for the commercial peerings already in place The general peering policy has some limitations that make it unfit for the Cloud VRF Each NREN and partner can choose if to peer or not (opt-in) The BGP community scheme allows a fine-grained control An NREN can stop BGP advertisements to a specific CP Filtering the CP prefixes on the NREN access port will block all the traffic between them (opt-out) The GÉANT solution

Networks ∙ Services ∙ People Network diagram GEANT GEANT CLOUD VRF GEANT NREN (AS200) PEERING REN (AS300) GEANT NREN (AS100) BGP announcements No tag NREN tag Cloud Provider tag deny AS11 CP2 (AS22) CP3 (AS33) 64512:11 AS22, AS33 CP1 (AS11) AS200, AS300

Networks ∙ Services ∙ People After the end of the current CERN tender, we’ll do an extensive analysis of the outcomes Manpower, time, costs, etc. The outcome will be presented to the GÉANT Board and the General Assembly, that should take a final decision on a long-term cloud policy Recently, Amazon has agreed with GÉANT to waive data egress charges! Looking forward

Networks ∙ Services ∙ People Thank you Networks ∙ Services ∙ People This work is part of a project that has received funding from the European Union’s Horizon 2020 research and innovation programme under Grant Agreement No (GN4-1). Questions?