The ShadowNet ProtoGENI Measurement Infrastructure Jim Griffioen Lab for Advanced Networking University of Kentucky Lexington, KY Kobus Van der Merwe AT&T.

Slides:

Advertisements

Similar presentations

VINI and its Future Directions

Advertisements

1/17/20141 Leveraging Cloudbursting To Drive Down IT Costs Eric Burgener Senior Vice President, Product Marketing March 9, 2010.

Elastic Provisioning In Virtual Private Clouds

Building Fast, Flexible Virtual Networks on Commodity Hardware Nick Feamster Georgia Tech Trellis: A Platform for Building Flexible, Fast Virtual Networks.

Sponsored by the National Science Foundation 1 August 30, 2010 GENI Shadownet Spiral 2 Year-end Project Review University of Kentucky, AT&T Research, and.

Power Saving. 2 Greening of the Internet Main idea: Reduce energy consumption in the network by turning off routers (and router components) when they.

Virtual Links: VLANs and Tunneling

1 Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.

APNOMS03 1 A Resilient Path Management for BGP/MPLS VPN Jong T. Park School of Electrical Eng. And Computer Science Kyungpook National University

| Copyright © 2009 Juniper Networks, Inc. | 1 WX Client Rajoo Nagar PLM, WABU.

Chapter 1: Introduction to Scaling Networks

All Rights Reserved © Alcatel-Lucent 2009 Enhancing Dynamic Cloud-based Services using Network Virtualization F. Hao, T.V. Lakshman, Sarit Mukherjee, H.

M A Wajid Tanveer Infrastructure M A Wajid Tanveer

The Platform as a Service Model for Networking Eric Keller, Jennifer Rexford Princeton University INM/WREN 2010.

INTRODUCTION TO NETWORK VIRTUALIZATION Mosharaf Chowdhury Member, eNVy Project Wednesday, May 14, 2008 University of Waterloo - eNVy 1.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing MPLS VPN Architecture.

© 2005 AT&T, All Rights Reserved. 11 July 2005 AT&T Enhanced VPN Services Performance Reporting and Web Tools Presenter : Sam Levine x111.

© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—2-1 Extending Switched Networks with Virtual LANs Introducing VLAN Operations.

1 Chapter 11: Data Centre Administration Objectives Data Centre Structure Data Centre Structure Data Centre Administration Data Centre Administration Data.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Configuring BGP as the Routing Protocol Between PE and CE Routers.

HetnetIP Ethernet BackHaul Configuration Automation Demo.

The Impact of SDN On MPLS Networks Adrian Farrel Juniper Networks

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 E-VPN and Data Center R. Aggarwal

Deployment of MPLS VPN in Large ISP Networks

© 2014 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 High-performance Gigabit Ethernet ports rapidly transfer large files supporting.

The Case for Enterprise Ready Virtual Private Clouds Timothy Wood, Alexandre Gerber *, K.K. Ramakrishnan *, Jacobus van der Merwe *, and Prashant Shenoy.

University of Kentucky Joint Techs 2011 Monitoring GENI Networks Jim Griffioen and Zongming Fei Laboratory for Advanced Networking University of Kentucky.

University of Kentucky GENI User Tools and the Control Plane Zongming Fei, Jim Griffioen University of Kentucky.

Internet2 and AL2S Eric Boyd Senior Director of Strategic Projects

Internet2 Network: Convergence of Innovation, SDN, and Cloud Computing Eric Boyd Senior Director of Strategic Projects.

1 In VINI Veritas: Realistic and Controlled Network Experimentation Jennifer Rexford with Andy Bavier, Nick Feamster, Mark Huang, and Larry Peterson

VROOM: Virtual ROuters On the Move Jennifer Rexford Joint work with Yi Wang, Eric Keller, Brian Biskeborn, and Kobus van der Merwe

This work is supported by the National Science Foundation under Grant Number DUE Any opinions, findings and conclusions or recommendations expressed.

FI-WARE – Future Internet Core Platform FI-WARE Cloud Hosting July 2011 High-level description.

© 2008 AT&T Intellectual Property. All rights reserved. CloudNet: Where VPNs Meet Cloud Computing Flexibly and Dynamically Timothy Wood Kobus van der Merwe,

VROOM: Virtual ROuters On the Move Yi Wang (Princeton) With: Kobus van der Merwe (AT&T Labs - Research) Jennifer Rexford (Princeton)

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—7-1 Integrating Internet Access with MPLS VPNs Implementing Internet Access as a Separate VPN.

Network based IP VPN Architecture using Virtual Routers Jessica Yu CoSine Communications, Inc. Feb. 19 th, 2001.

Virtual Private Network prepared by Rachna Agrawal Lixia Hou.

BUILDING HYBRID APPS WITH DYNAMICS CRM & WINDOWS AZURE Guy Riddle & George Doubinski Dynamics CRM MVP’s SESSION CODE: DEV-DYN-MID306 (c) 2011 Microsoft.

© 2008 AT&T Intellectual Property. All rights reserved. March 27, 2009 Page 1 Clouds and Networks: Technology and Network Infrastructure Evolution Charles.

Morteza Yousefi University of Science & Technology of Mazandaran Network Virtualization 1 of 22 Network Virtualization.

Virtual Machine Hosting for Networked Clusters: Building the Foundations for “Autonomic” Orchestration Based on paper by Laura Grit, David Irwin, Aydan.

1 WHY NEED NETWORKING? - Access to remote information - Person-to-person communication - Cooperative work online - Resource sharing.

Virtualization Lab 3 – Virtualization Fall 2012 CSCI 6303 Principles of I.T.

National Science Foundation Arlington, Virginia January 7-8, 2013 Tom Lehman University of Maryland Mid-Atlantic Crossroads.

CustomerSegment and workloads Your Datacenter Active Directory SharePoint SQL Server.

IT Infrastructure Chap 1: Definition

Presented by: Sanketh Beerabbi University of Central Florida COP Cloud Computing.

GEC 101 The GENI ShadowNet Project Jim Griffioen (Kentucky) Zongming Fei (Kentucky) Kobus Van der Merwe (AT&T) Eric Boyd (Internet 2)

Component Technology. Challenges Facing the Software Industry Today’s applications are large & complex – time consuming to develop, difficult and costly.

Sponsored by the National Science Foundation GENI Exploring Networks of the Future

 The End to the Means › (According to IBM ) › 03.ibm.com/innovation/us/thesmartercity/in dex_flash.html?cmp=blank&cm=v&csr=chap ter_edu&cr=youtube&ct=usbrv111&cn=agus.

SOFTWARE DEFINED NETWORKING/OPENFLOW: A PATH TO PROGRAMMABLE NETWORKS April 23, 2012 © Brocade Communications Systems, Inc.

The role of networking in the Dynamic Data Center Niels Friis-Hansen Senior IT Specialist, CCIE IBM Communication & Collaboration.

NetModule Cloud Solution Professional M2M Networking out of the Cloud © 2014 NetModule AG Slide 1.

| Basel Fabric Management with Virtual Machine Manager Philipp Witschi – Cloud Architect & Microsoft vTSP Thomas Maurer – Cloud Architect & Microsoft MVP.

Going Hybrid – part 1 Moving to Hybrid Cloud with Windows Azure Virtual Machines & System Center 2012 R2.

The Internet2 Network and LHC Rick Summerhill Director Network Research, Architecture, and Technologies Internet2 LHC Meeting 23 October 2006 FERMI Lab,

DISTRIBUTED SYSTEMS Principles and Paradigms Second Edition ANDREW S

Examples based on draft-cheng-supa-applicability-00.txt

Elastic Provisioning In Virtual Private Clouds

Introduction to Cloud Computing

Your Business Opportunity

Network+ Guide to Networks 6th Edition

Dev Test on Windows Azure Solution in a Box

Concept of VLAN (Virtual LAN) and Benefits

Virtual Private Network

GENI Exploring Networks of the Future

Presentation transcript:

The ShadowNet ProtoGENI Measurement Infrastructure Jim Griffioen Lab for Advanced Networking University of Kentucky Lexington, KY Kobus Van der Merwe AT&T Labs - Research Florham Park, NJ Other Project Members Zongming Fei (Kentucky) Eric Boyd (Internet 2)

Outline ProtoGENI ShadowNet Leveraging AT&T ShadowNet March 17, 2010GEC7

ProtoGENI ShadowNet March 17, 2010GEC7

Project Overview Problem: ProtoGENI backbone router resources are limited and can be challenging to use. Idea: Leverage the logical router features of Juniper routers to dynamically create virtual routers (slivers) in the backbone that provide carrier-grade performance and services. Challenge 1: Creating the control software needed to virtualize the Juniper M7i and integrate with the ProtoGENI network Challenge 2: Make it easy for users to see what is happening on their backbone router slivers. March 17, 2010GEC7

Project Goals 1. Deploy virtualizable commercial routers (Juniper m7i) in the ProtoGENI backbone that support commercial OS/software. 2. Add software support to these virtual routers that will enable per-slice monitoring and measurement. 3. Develop tools and interfaces that will allow slice users to use the measurement infrastructure in simple and easy ways. March 17, 2010GEC7

March 17, 2010GEC7 Source: ProtoGENI Network

March 17, 2010GEC7 Source: ProtoGENI Shadownet Sites Year 1 Year 2

ProtoGENI Backbone Node Architecture March 17, 2010GEC7 Sliver 1 NetFPGA Sliver n General Purpose Slivers Gigabit Ethernet Switch Internet 2 Non-sliced PC Sliced PC

ProtoGENI Backbone Node Architecture March 17, 2010GEC7 Logical Router 1 Logical Router 2 Logical Router n Juniper M7i Router Sliver 1 NetFPGA Sliver n ShadowBox Controller Juniper Component Manager Virtual Server General Purpose Slivers Gigabit Ethernet Switch Internet 2 Non-sliced PC Sliced PC ShadowBox Router

ProtoGENI Backbone Node Architecture March 17, 2010GEC7 Logical Router 1 Logical Router 2 Logical Router n Juniper M7i Router Sliver 1 NetFPGA Sliver n ShadowBox Controller Juniper Component Manager Virtual Server perfSONAR 1perfSONAR n General Purpose Slivers Measurement Slivers Gigabit Ethernet Switch Internet 2 Non-sliced PC Sliced PC ShadowBox Router

Leveraging AT&T ShadowNet March 17, 2010GEC7

Why ShadowNet? ShadowNet is roughly addressing same problem as GENI, however Less clean slate… Focus on services and network management… Need the ability to more rapidly evolve the way we run our network and the services we offer in our network (pull): Inherently difficult: – Potential impact to existing services Networks are shared, new service/feature might negatively interact with existing services Gets worse with time: networks are cumulative (hardly ever gets switched off) Very long test cycles – Need for support systems Configuration management, network management, service monitoring, provisioning, customer interfaces, billing, fault management Legacy lock in: Existing (complicated) systems need to be modified to support new services Extremely long development time New vendor technologies (push): Programmability and virtualization available from major vendors – Allow non-vendor code to execute on routers – Loosen the tight coupling between physical boxes and logical functions Rethink the way we deploy services and operate our network

ShadowNet as (part of) a solution National footprint network/platform/testbed for research and service trials – Connected to, but separate from production network Limit impact on operational network Look like a customer to AT&T network – In between lab and production Stable enough for service trials Open/flexible enough for research experiments – General purpose, shareable testbed facility Would like to make this a widely available/useful facility, akin to general purpose computing facilities The role of ShadowNet: Operational (but non-production) environment to enable: – Evaluation of new technologies/vendor capabilities No impact on existing network/services – Service testing/trials in a realistic environment (including customer trials) Utilize virtualization and partitioning capabilities to limit interaction and reduce risk – Evolution of network support systems Free from legacy lock – Research in operational setting Both networking and Internet services Safe playground for network evolution – This model might become the way we want to build our network

ShadowNet node architecture Operational nodes: Richardson, TX Pleasanton, CA Chicago, IL Waiting for network connectivity: Middletown, NJ Page 14 Juniper M7i Router Juniper M7i Juniper M7i Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Cisco Catalyst 3560G-48TS GigE ShadowNet rack Each node: – Gateway router, Juniper M7i – 2 X GigE connectivity to AT&T network – 7 X SunFire x4150 servers – 2 X multiservice routers, Juniper M7i – Cisco GigE switch (Catalyst 3560) – OOB access AS 5105: – Full BGP table – 4 /24 prefixes – Advertise up to /32 Set of building blocks that can be flexibly combined into an operational network (or networks)

Page 15 ShadowNet Sharable and composable infrastructure Strong separation between physical and logical devices: Physical machines -> virtual machines Physical routers -> logical routers Physical links -> logical gigE links: pseudowires, tunnels, VLANs etc ShadowNet slices consist of logical devices that have been plumbed together However, allow allocation of physical devices to a slice

March 17, 2010GEC7 Life cycle of ShadowNet devices

March 17, 2010GEC7 Using ShadowNet CloudNet experimentation Combining cloud computing with VPN Fairly elaborate setup involving many components Create VPLS VPN between three sites Prototype dynamic VPN connectivity Experiment with (live) virtual machine and storage migration Mechanisms for optimizing WAN migration In the works: Cloud control architecture Slice with bunch of VMs for architectural support for network debugging Declarative approach to network management Extend to provide mobility functionality "The interesting thing about cloud computing is that we've redefined cloud computing to include everything that we already do. I can't think of anything that isn't cloud computing with all of these announcements. Larry Ellison, CEO Oracle Wall Street Journal, September 26, 2008

Enterprise Cloud Challenges Existing cloud platforms do not meet the needs of enterprise customers Insufficient security controls Need isolation at server and network level Deployment is difficult - transparency Cloud resources are completely separate from local ones Cant make VMs look like part of existing enterprise network Limited control over network resources Cannot specify network topology or IP addresses Cannot reserve bandwidth or request QoS guarantees for network links Page 18

Page 19 CloudNet Enterprise-Ready Virtual Private Clouds Use VPNs to separate customer resources Customers cloud resources are only reachable from other VPN end points More flexible control of how IP addresses are assigned Physical network is transparent to customer Assume a virtual machine abstraction CloudNet writeup (intranet): VPNs provide both network resource isolation and strong security

Page 20 Virtual Private Clouds Virtual Private Cloud: Collection of cloud resources presented to customer as a private set of cloud resources, transparently and securely connected to customer VPN Manage network resources in the same dynamic manner as cloud resources Server PE VPN A VPN B Server Cloud Site X AT&T Backbone PE Server Cloud Site Y Server VPC A VPC B

Page 21 System/Architecture Components Server PE CE Router PE VPN A VPN B Network Manager High level abstraction: Create compute resources Map into VPN Cross domain interaction CloudNet Portal Cloud Manager Cloud Platform AT&T Backbone PE Network DomainCloud Domain Cloud Manager: Create compute resources Map into VPN (cloud side) Network Manager (IRSCP): VPN management (network side)

Page 22 Cloudnet in ShadowNet: Physical nodes involved CloudNet slice AT&T backbone (7132) AT&T backbone (7132) Juniper M7i Juniper M7i Juniper M7i Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Cisco Catalyst 3560G-48TS ShadowNet rack Juniper M7i Juniper M7i Juniper M7i Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Cisco Catalyst 3560G-48TS ShadowNet rack GRE tunnels Juniper M7i Juniper M7i Juniper M7i Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Sun Fire X4150 Server Cisco Catalyst 3560G-48TS ShadowNet rack PLTN CHCG RCSN

Page 23 Cloudnet in ShadowNet: VPLS MPLS VPN in a slice P1 P3 Cisco Switch P1 Juniper Router Cisco Switch P3 Juniper Router VLAN-CCC VLAN Logical link: VLAN cross connect example PLTN5 RCSN6 CHCG6 PE1 P1 RR/IRSCP P3PE3 P2PE2 Logical tunnel VLAN circuit cross connect Physical ethernet PLTN RCSN CHCG

Page 24 VM migration across WAN Ipsec client on laptop provides remote access to VPN Run game server on VM Run game client on laptop Game server move with VM Application very sensitive to network impairments Client monitor typically shows game detects minor changes VM migration across WAN just works using VPLS VPNs Optimize for WAN conditions: Storage: moving between asynchronous and synchronous replication VM: optimizing migration logic + redundancy elimination PLTN5 RCSN6 CHCG6 PE1 P1 RR/IRSCP P3PE3 P2PE2 VpnRemap PLTN CHCG RCSN r0 drbd VM0 Game Server VM0 Game Client Laptop ipsec

Thank You! Questions? This material is based upon work supported in part by the National Science Foundation. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of GPO Technologies, Corp, the GENI Project Office, or the National Science Foundation.