The MANTICORE Project: Providing Users with a Logical IP Network Service Eduard Grasa, Fundació i2cat.

Slides:



Advertisements
Similar presentations
Introduction to the WatchGuard AP Device
Advertisements

Overview: Guide for applying RM-ODP with UML Profile for EDOC
Computer Networks TCP/IP Protocol Suite.
1 UNIT I (Contd..) High-Speed LANs. 2 Introduction Fast Ethernet and Gigabit Ethernet Fast Ethernet and Gigabit Ethernet Fibre Channel Fibre Channel High-speed.
Virtual Trunk Protocol
OSPF 1.
1 Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.
11 Application of CSF4 in Avian Flu Grid: Meta-scheduler CSF4. Lab of Grid Computing and Network Security Jilin University, Changchun, China Hongliang.
Circuit Monitoring July 16 th 2011, OGF 32: NMC-WG Jason Zurawski, Internet2 Research Liaison.
18 Copyright © 2005, Oracle. All rights reserved. Distributing Modular Applications: Introduction to Web Services.
11 Copyright © 2005, Oracle. All rights reserved. Creating the Business Tier: Enterprise JavaBeans.
The MANTICORE Project: Providing Users with a Logical IP Network Service Victor Reijs, HEAnet Eduard Grasa, Fundació i2cat MANTICORE Partners (self funded.
1 Preliminary results of the Environmental Data Exchange Network for Inland Waters (EDEN-IW) project Practical lessons. P. Haastrup.
FORUM ON NEXT GENERATION STANDARDIZATION (Colombo, Sri Lanka, 7-10 April 2009) A Pilot Implementation of an NGN Dual Stack IPv4/IPv6 network for MEWC,
MPLS VPN.
Communicating over the Network
© Tally Solutions Pvt. Ltd. All Rights Reserved 1 Control Centre December 09.
© Tally Solutions Pvt. Ltd. All Rights Reserved Shoper 9 License Management December 09.
Auto-scaling Axis2 Web Services on Amazon EC2 By Afkham Azeez.
Server Access The REST of the Story David Cleary
Hello i am so and so, title/role and a little background on myself (i.e. former microsoft employee or anything interesting) set context for what going.
Week 2 The Object-Oriented Approach to Requirements
1 Chapter One Introduction to Computer Networks and Data Communications.
© Telcordia Technologies 2004 – All Rights Reserved AETG Web Service Tutorial AETG is a service mark of Telcordia Technologies. Telcordia Technologies.
© SafeNet Confidential and Proprietary Administering SafeNet StorageSecure Smart Card Module 3: Lesson 5 SafeNet StorageSecure Storage Security Course.
2010 Labs & Tools for ITE 1 Gratitude Kudyachete, Manager - SSA CATC Lab Tools for IT E 4.1.
Chapter 1: Introduction to Scaling Networks
1 The phone in the cloud Utilizing resources hosted anywhere Claes Nilsson.
The Platform as a Service Model for Networking Eric Keller, Jennifer Rexford Princeton University INM/WREN 2010.
©Ian Sommerville 2006Software Engineering, 8th edition. Chapter 31 Slide 1 Service-centric Software Engineering.
What is access control list (ACL)?
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 2 The OSI Model and the TCP/IP.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v MPLS VPN Technology Introducing MPLS VPN Architecture.
© Copyright 2009 IMS Global Learning Consortium All Rights Reserved. 1 Building the Standards for Learning Functionality Mashup IMS Learning Tool Interoperability.
DAQmx下多點(Multi-channels)訊號量測
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 EN0129 PC AND NETWORK TECHNOLOGY I IP ADDRESSING AND SUBNETS Derived From CCNA Network Fundamentals.
31242/32549 Advanced Internet Programming Advanced Java Programming
CONTROL VISION Set-up. Step 1 Step 2 Step 3 Step 5 Step 4.
1 © 2004, Cisco Systems, Inc. All rights reserved. CCNA 1 v3.1 Module 10 Routing Fundamentals and Subnets.
Executional Architecture
Route Optimisation RD-CSY3021.
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—2-1 Extending Switched Networks with Virtual LANs Introducing VLAN Operations.
Mantychore FP7 Project specific issues and Manticore II status.
IP Networks as a Service Victor Reijs Work Package 2 leader 3 rd TERENA End-to-End workshop November 29 th, Prague.
Chapter 9: Subnetting IP Networks
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—5-1 MPLS VPN Implementation Configuring BGP as the Routing Protocol Between PE and CE Routers.
Chapter 10: The Traditional Approach to Design
Systems Analysis and Design in a Changing World, Fifth Edition
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
Connecting LANs, Backbone Networks, and Virtual LANs
1 © 2004, Cisco Systems, Inc. All rights reserved. CCNA 1 v3.1 Module 9 TCP/IP Protocol Suite and IP Addressing.
PSSA Preparation.
VPN AND REMOTE ACCESS Mohammad S. Hasan 1 VPN and Remote Access.
The Impact of SDN On MPLS Networks Adrian Farrel Juniper Networks
Modeling Main issues: What do we want to build How do we write this down.
From Model-based to Model-driven Design of User Interfaces.
What’s new in WebSpace Changes and improvements with Xythos 7.2 Effective June 24,
TCP/IP Protocol Suite 1 Chapter 18 Upon completion you will be able to: Remote Login: Telnet Understand how TELNET works Understand the role of NVT in.
Deployment of MPLS VPN in Large ISP Networks
HEAnet's Major Network Evolution Andrew Mackarel David Wilson.
MANTICORE II Kick off meeting Duration: 17.5 months Effort: 76mms Starts: 15/01/2009 Project Leaders: Project Partners: Project Affiliate Partners:
Objectives Configure routing in Windows Server 2008 Configure Routing and Remote Access Services in Windows Server 2008 Network Address Translation 1.
Connect. Communicate. Collaborate BANDWIDTH-ON-DEMAND SYSTEM CASE-STUDY BASED ON GN2 PROJECT EXPERIENCES Radosław Krzywania (speaker) PSNC Mauro Campanella.
IP Networks as a Service Sergi Figuerola Project Coordinator 8 th e-Infrastructure Concertation meeting.
A DVANCE AND I MMEDIATE R ESERVATIONS OF V IRTUALIZED N ETWORK R ESOURCES Laia Ferrao Fundació i2CAT
Introduction & Vision. Introduction MANTICORE provides a software implementation and tools for providing and managing routers and IP networks as services.
© 2005 Cisco Systems, Inc. All rights reserved. BGP v3.2—6-1 Scaling Service Provider Networks Scaling IGP and BGP in Service Provider Networks.
1 Revision to DOE proposal Resource Optimization in Hybrid Core Networks with 100G Links Original submission: April 30, 2009 Date: May 4, 2009 PI: Malathi.
1 Prototype for the interoperability between FEDERICA slices and other IP domains by means of the IPsphere Framework Josep Pons Camps i2Cat.
GENUS Virtualisation Service for GÉANT and European NRENs
Presentation transcript:

The MANTICORE Project: Providing Users with a Logical IP Network Service Eduard Grasa, Fundació i2cat

Agenda The MANTICORE Project Vision MANTICORE Implementation –The IaaS Framework (UCLP Evolution) –User Roles –Software Architecture How does it work: GUI preview DEMO at TNC 2008 Future work: MANTICORE and RPSL MANTICORE and the FEDERICA Project 2

Beyond bandwidth on demand services The main goal: Create an innovative service that provides the network NOC and/or the end user with the ability to customize the configuration of its own dedicated IP physical and/or logical network. Several research challenges: –Representation of routing devices: physical equipment from different vendors, multiple configuration protocols, APIs, … –Representation of routing policies: Some mechanism must be created to provide the user with the ability to express potentially complex requests (such as BGP policies) in a simple way. –Federation of user-defined autonomous systems (ASs): Users can create their own IP domains and choose to what other IP domains they want to peer with. 3

The MANTICORE vision Other user(s) IP Network or the Internet Physical Router Logical Router Physical Link Logical Link User Site Each users IP network is represented by a different color 4

The MANTICORE use cases 5 Use case 1 Single LR Use case 3 External routing Other User(s) IP network and/or peering networks Use case 2 Multiple LR

Agenda The MANTICORE Project Vision MANTICORE Implementation –The IaaS Framework (UCLP Evolution) –User Roles –Software Architecture How does it work: GUI preview DEMO at TNC 2008 Future work: MANTICORE and RPSL MANTICORE and the FEDERICA Project 6

What is virtualization? What is IaaS? Virtualization consists of representing a physical device/substrate as a Software entity (P2V) –Initially started with PC virtualization (VMware, Virtual Iron, VirtualPC) –These were used locally in the data centres –Amazon and BlueLock pioneer the IaaS service by renting hardware using proprietary solutionsAmazonBlueLock IaaS is equivalent of SaaS for hardware devices –Users pay to use shared infrastructures –Monthly fees or Pay per use –Long term exchanges compared to on-demand services –Users control/own the infrastructure 7

UCLP, Argia and the IaaS Framework Two UCLP research programs were put in place by CANARIE to provide a virtualization solution for optical networks starting in 2001 –UCLP initial goal was to provide end to end paths across domains –UCLPv2 goals were to create reusable and configurable network blocks UCLPv2 concepts are evolving into many different Physical to Virtual (P2V) products and R&D projects that are built on the IaaS Framework: –Argia -> Product for Optical Networks –Ether -> R&D for Ethernet and MPLS Networks –MANTICORE -> R&D for virtualized IP Networks –GRIM -> R&D for Instruments and Sensors RMCMANTICOREETHER GRIMCHRONOS 8

IaaS Framework What is the IaaS Framework? The Infrastructure as a Service (IaaS Framework), is, –A generalized approach to the outcome of years of research under the UCLP Research programs funded by CANARIE –A set of software resources used to administer a domain from user workspaces, to resource exchanges, permissions and security –A list of operation providers that can be used to quickly provide functionalities like permissions/security, reservation, topology and allow them to seamlessly integrate in the Resource Management Centre (RMC) –Libraries and tools to manage persistence or communication with the hardware devices –The enabling technology for upcoming products and R&D initiatives 9

Device Controller Services Device Virtualization Services Optical Switch Resources Router Resources Scenarios Resources Network Virtualization Services Ethernet Switch Resources IP Network Resources TDM Timeslot Resources Ethernet Port Resources WDM Resources Connections Resources VLAN Resources Physical Network Resources Resource List Resources Application Services WS MANTICORE (IP Research Project) WS Framework (Open Source) WS Ether (Product) (Ethernet Networks) WS Argia (Product) (Optical Networks) Resource Management Centre and User Web Portal. WS GRIM (Virtual Instruments Research) GRIM Resources Instrument Resources Appliance Resource Support Services User Workspace Resources Unless specified otherwise the development is being performed in partnership by i2CAT, CRC and Inocybe Technologies. RCPWEB (Development)... IaaS Framework, Products and Research Projects Architecture 10

Physical Network Administrator: Owners of physical infrastructure. He can virtualize (create a software object that represents all or a part of a physical infrastructure) the physical infrastructure and give permissions to users (=export virtual resources) so they can have limited control over the resources. APN (or Virtual Network) Administrator: He gathers resources from one or more physical network administrators or other APN Administrators (by asking them or through resource brokers). He also assigns the resources hes harvested to different services (for instance, he could assign a set of ethernet port resources to the VLAN Service, or a set of logical routers to the IP Network Service). End User: Just uses the services provided by the software. For instance, if there is a reservation service, the user can ask for network reservations; if there is an IP Network Service, the user can configure its IP Network; if there is a VLAN Service, the user can ask for an end to end VLAN, and so on (this type of user JUST SEES THE SERVICE INTERFACE, he cannot collect or trade virtual resources, it is the traditional end user). User Roles 11

Resource Trading User A Provider 1 User B Provider 2 User C Resource List 12

Network Virtualization Services They offer a service to the end user on top of the virtual resources. The following could be examples of network virtualization services: Reservation Service Creates point to point connections (inmediate or in advance) over SONET/SDH resources (withVCAT, LCAS, GFP) IP Network Service Creates an IP network Service where the user can configure internal routing protocols, external peering, … … Other.. (put the service that you want here) GMPLS Service Has the functionalities of a GMPLS node (Connection Controller, Routing Controller, …) Speaks GMPLS Protocols (OSPF, RSVP), and can be seen as a GMPLS domain by external entities 13

MANTICORE Software Architecture 14 Router-WS Virtual Resource Services Ethernet Resource WS TDM Resource WS... IP Network WS GUI client(s) RPSL may be used to let the GUI specify high level routing policies (internal as well as external) to the IP Network WS Transforms the routing configuration abstract description in high level operations that will be invoked in the Router WS over one or more virtual resources Represent the physical (ports) or logical interfaces (VLANs, TDM Channels) that users can access. Transforms the high level operations over one or more virtual resources into specific commands that each particular routing device can understand Netconf Juniper device Protocol X Other vendor device Protocol Y Software router User Workspace WS Manage user accounts, get user credentials, authenticate

IP Network Service Functionality General configuration of the router interfaces: –The user can configure the IP address, the NETMASK, the status (up or down) and other general parameters of the interface. Add/Delete static route –The user applies a static entry to the routing table. This static entry can be for one or more source interfaces. Configure an IGP on a interface or the whole network –The user of an IP Network can apply a dynamic routing protocol (initially OSPF and RIP) to every interface inside it, and modify the IGP parameters. Configure an EGP on an interface or the whole network –The user can decide to what other IP Networks he wants to peer with, and choose what routes are advertised to external networks. Simple BGP configurations will be generated (iBGP will also be configured between BGP nodes of the same AS) 15

First implementation limitations Only deal with Juniper routers using the Netconf JunOS XML API RPSL (will explain later) wont be used as a means of describing abstract routing configurations (instead, a proprietary simple and limited representation will be used). WS-Security: WS Messages are not encrypted nor signed. The implementation is a proof of concept, not a complete solution: working prototypes of the services will be implemented, but some features and performance optimization will be left for future work 16

Agenda The MANTICORE Project Vision MANTICORE Implementation –The IaaS Framework (UCLP Evolution) –User Roles –Software Architecture How does it work: GUI preview DEMO at TNC 2008 Future work: MANTICORE and RPSL MANTICORE and the FEDERICA Project 17

Example deployment Two organizations: –NORDUnet: Physical Network Administrator. In this very simple example it operates a network with one physical router. –i2CAT: Virtual Network Administrator. In this very simple example it will request two logical routers to NORDUnet. MANTICORE Software deployment 18 NORDUnet Server: - User Workspace WS - Ethernet Resource WS - IP Network WS - Router WS i2cat Server: (optional) - User Workspace WS - Ethernet Resource WS - IP Network WS

NORDUnet discovers the physical router 19 When NORDUnet first launches the GUI client, it must create a new physical network and add all the routers they want to manage to it.

NORDUnet Physical Network with the Router 20

NORDUnet PN Admin creates logical routers 21 NORDUnet admin creates some logical interfaces, two logical routers and assigns these logical interfaces to the logical routers. He also creates a logical tunnel between the two logical routers (new LT interfaces are created).

NORDUnet PN with the Router and the LRs 22

Creation of virtual links and virtual interfaces NORDUnet PN Admin creates a resource list (list of resources that can be accessed by NORDUnet or a 3 rd party). NORDUnet PN Admin creates virtual interfaces and virtual links (kind of proxy objects that represent the remotely configurable interfaces and links), and adds them to the resource list. 23

Exporting resources NORDUnet PN Admin exports the resource list to i2cat (permissions are set on the resources so that i2cats users can access and modify the resources on the resource list). i2cat APN Admin, launches its GUI Client, logs into the server and downloads the resource list. 24 NORDUnet Server: i2cat Server: (optional) Resource List

i2cats IP Network i2cat APN Admin creates a new IP Network and adds the resources of the resource list to it. 25 Now he can configure the IP parameters of the interfaces, configure IGPs, configure the peering,...

Example: RIP Configuration wizards 26

Agenda The MANTICORE Project Vision MANTICORE Implementation –The IaaS Framework (UCLP Evolution) –User Roles –Software Architecture How does it work: GUI preview DEMO at TNC 2008 Future work: MANTICORE and RPSL MANTICORE and the FEDERICA Project 27

TNC 2008 MANTICORE Demo 28 During the Terena Networking Conference 2008 (Bruges, May) at the Juniper booth, the following scenario is going to be demonstrated. router1.rediris.esrouter4.rediris.esrouter2.rediris.esrouter3.rediris.esrouter5.rediris.es AREA 0 AS10 AS20 ge-0/0/0 ge-1/0/0 ge-2/0/0 ge-3/0/ AS1 eBGP lo0: /32 lo0: /32 lo0: /32 lo0: /32 lo0: /32 static

Agenda The MANTICORE Project Vision MANTICORE Implementation –The IaaS Framework (UCLP Evolution) –User Roles –Software Architecture How does it work: GUI preview DEMO at TNC 2008 Future work: MANTICORE and RPSL MANTICORE and the FEDERICA Project 29

RPSL: Routing Policy Specification Language Language used to describe the routing policies of an AS. E.g. 30 whois as1213 aut-num: AS1213 as-name: HEANET import: from AS3549 # Global Crossing action pref=100; accept ANY import: from AS2850 # UCD action pref=50; accept AS2850 export: to AS3549 # Global Crossing announce AS-HEANET export: to AS2850 # UCD [client] announce ANY...but just send you ours Transit provider We'll take entire internet's routes Client - we only want to see your own network...we'll send you all we've got

RPSL in MANTICORE RPSL can be used as a means of describing the external routing policies as well as the IGP configurations (with minor extensions). These RPSL descriptions can be taken as an input by the IP Network WS and then generate the high level operations to invoke at the Router WS (remember the architecture picture). Implementation status: RPSL RFCs (2622, RPSL and 4012, RPSLng) have been studied, and some preliminary RPSL descriptions for the MANTICORE use cases have been generated. Not implemented yet due to time constraints. 31 Router-WS Virtual Resource Services Ethernet Resource WS TDM Resource WS... IP Network WS GUI client(s) RPSL may be used to let the GUI specify high level routing policies (internal as well as external) to the IP Network WS Transforms the routing configuration abstract description in high level operations that will be invoked in the Router WS over one or more virtual resources Represent the physical (ports) or logical interfaces (VLANs, TDM Channels) that users can access. Transforms the high level operations over one or more virtual resources into specific commands that each particular routing device can understand Netconf Juniper device Protocol X Other vendor device Protocol Y Software router User Workspace WS Manage user accounts, get user credentials, authenticate

Other Future Work Integrate MANTICORE with the other IaaS Framework based network virtualization solutions: –With Argia, product for optical networks (TDM, WDM, Fibre). –With Ether, upcoming product for Ethernet and MPLS networks. Create drivers for other router vendors Add more features to the IP Network WS –Allow APN Admins and end users to create new logical interfaces –Provide means of describing more complex routing policies –Other? Work to be carried out within the FEDERICA project –See next section 32

Agenda The MANTICORE Project Vision MANTICORE Implementation –The IaaS Framework (UCLP Evolution) –User Roles –Software Architecture How does it work: GUI preview DEMO at TNC 2008 Future work: MANTICORE and RPSL MANTICORE and the FEDERICA Project 33

FEDERICA e-Infrastructure What:7 th FP project in the area Capacities - Research Infrastructures 3.7 MEuro EC contribution, 5.2 ME budget, 20 partners, 461 Person Months When:1 st January June 2010 (30 months) Virtualization infrastructure, a Network Factory to provide slices to researchers in Future Internet, where a slice is a mix of network circuits and computing elements. Built using resources (Gb Ethernet circuits) from GÉANT2 and NRENs as contributions to the project. Open to interconnect other Infrastructures Connected to Internet (through NRENs)

FEDERICA - Goals Summary Act as a forum and support for researchers/projects on Future Internet. Support of experimental activities to validate theoretical concepts, scenarios, architectures, control and management solutions. Users have full control of their slice Provide on European scale network and system agnostic e-infrastructure to be deployed in phases. Provide its operation, maintenance and on- demand configuration Validate and gather experimental information for the next generation of research networking also through basic tool validation Dissemination and cooperation between NRENs and researchers community Contribution to standards in form of requirements and experience In scope Internal extended research, e.g. advanced optical technology Development and support of Grid applications Offer raw computing power Offer transit capacity Out of scope

MANTICORE Activities inside FEDERICA 36 Add support for more routers (including software routers) Interoperability with the IPsphere Framework –The IPsphere Forum has produced the IPsphere Framework spec, which facilitates the creation of multi-stakeholder and multi- technology services. –The interoperability implementation must allow users of IPsphere to compose resources coming from MANTICORE (e.g. Logical routers or IP Networks) into an IPsphere Service. Add support for virtual machines –Be able to offer a virtual machine as a resource (in a resource list), the same way it is done with the logical router.

Thanks for your attention! More information: MANTICORE: –Victor Reijs, Network Development Manager, HEAnet Limited –Sergi Figuerola, Coordinator of the Network Technologies Cluster, Fundacio i2cat IaaS Framework: –Inocybe Technologies Inc. –IaaS Framework website: 37

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.