1 ESnet On-demand Secure Circuits and Advance Reservation System (OSCARS) Chin Guok Network Engineering Group ESCC July 23 2008 Energy Sciences Network.

Slides:



Advertisements
Similar presentations
Research Challenges in the Emerging Hybrid Network World Tom Lehman University of Southern California Information Sciences Institute (USC/ISI)
Advertisements

Supporting Advanced Scientific Computing Research Basic Energy Sciences Biological and Environmental Research Fusion Energy Sciences High Energy Physics.
Tiziana FerrariWP2.3 Advance Reservation Demonstration: Description and set-up 1 WP2.3 Advance Reservation Demonstration: Description and set-up DRAFT,
1 Chin Guok ESnet Network Engineer David Robertson DSD Computer Software Engineer Lawrence Berkeley National Laboratory.
Tiziana FerrariWP2.3 Advance Reservation Demonstration: Description and set-up 1 WP2.3 Advance Reservation Demonstration: Description and set-up DRAFT,
1 Chin Guok ESnet Network Engineer David Robertson DSD Computer Software Engineer Lawrence Berkeley National Laboratory.
ESnet On-demand Secure Circuits and Advance Reservation System (OSCARS) Chin Guok Network Engineering Group Thomas Ndousse Visit February Energy.
1 ESnet Update Summer 2007 Joint Techs Workshop Joe Burrescia ESnet General Manager July 16,2007 Energy Sciences Network Lawrence Berkeley National Laboratory.
ATLAS Tier 2 Paths Within ESnet Mike O’Connor ESnet Network Engineering Group Lawrence Berkeley National Lab
1 ESnet - Connecting the USA DOE Labs to the World of Science Eli Dart, Network Engineer Network Engineering Group Chinese American Network Symposium Indianapolis,
Circuit Services - IPTV Christian Todorov Internet2 Fall Member Meeting October 9, 2007.
1 ESnet Planning for the LHC T0-T1 Networking William E. Johnston ESnet Manager and Senior Scientist Lawrence Berkeley National Laboratory.
Interoperable Intelligent Optical Networking: Key to future network services and applications OIF Carrier Group Interoperability: Key issue for carriers.
TeraPaths TeraPaths: establishing end-to-end QoS paths - the user perspective Presented by Presented by Dimitrios Katramatos, BNL Dimitrios Katramatos,
OSCARS Overview Path Computation Topology Reachability Contraints Scheduling AAA Availability Provisioning Signalling Security Resiliency/Redundancy OSCARS.
1 Services to the US Tier-1 Sites LHCOPN April 4th, 2006 Joe Metzger ESnet Engineering Group Lawrence Berkeley National Laboratory.
ARCHSTONE Advanced Resource Computation for Hybrid Service and TOpology NEtworks New Projects Kick-Off Meeting Fermilab, Batavia, IL September 28 th, 2009.
Connect. Communicate. Collaborate VPNs in GÉANT2 Otto Kreiter, DANTE UKERNA Networkshop 34 4th - 6th April 2006.
HOPI Update Rick Summerhill Director Network Research, Architecture, and Technologies Jerry Sobieski MAX GigaPoP and TSC Program Manager Mark Johnson MCNC.
Nlr.net © 2004 National LambdaRail, Inc 1 NLR Update Dave Reese Joint Techs February 2007.
Rick Summerhill Chief Technology Officer, Internet2 Internet2 Fall Member Meeting 9 October 2007 San Diego, CA The Dynamic Circuit.
Dynamic Circuit Services Control Plane Overview April 24, 2007 Internet2 Member Meeting Arlington, Virginia Tom Lehman University of Southern California.
1 ESnet Update Winter 2008 Joint Techs Workshop Joe Burrescia ESnet General Manager January 21, 2008 Energy Sciences Network Lawrence Berkeley National.
1 ESnet Update Joint Techs Meeting Minneapolis, MN Joe Burrescia ESnet General Manager 2/12/2007.
1 Nuclear Physics Network Requirements Workshop Washington, DC Eli Dart, Network Engineer ESnet Network Engineering Group May 6, 2008 Energy Sciences Network.
InterDomain Dynamic Circuit Network Demo Joint Techs - Hawaii Jan 2008 John Vollbrecht, Internet2
1 ESnet Planning for the LHC T0-T1 Networking William E. Johnston ESnet Manager and Senior Scientist Lawrence Berkeley National Laboratory.
A Framework for Internetworking Heterogeneous High-Performance Networks via GMPLS and Web Services Xi Yang, Tom Lehman Information Sciences Institute (ISI)
Hybrid MLN DOE Office of Science DRAGON Hybrid Network Control Plane Interoperation Between Internet2 and ESnet Tom Lehman Information Sciences Institute.
Delivering Circuit Services to Researchers: The HOPI Testbed Rick Summerhill Director, Network Research, Architecture, and Technologies, Internet2 Joint.
Copyright 2004 National LambdaRail, Inc N ational L ambda R ail Update 9/28/2004 Debbie Montano Director, Development & Operations
TeraPaths TeraPaths: Establishing End-to-End QoS Paths through L2 and L3 WAN Connections Presented by Presented by Dimitrios Katramatos, BNL Dimitrios.
Office of Science U.S. Department of Energy ESCC Meeting July 21-23, 2004 Network Research Program Update Thomas D. Ndousse Program Manager Mathematical,
1 Network Measurement Summary ESCC, Feb Joe Metzger ESnet Engineering Group Lawrence Berkeley National Laboratory.
TeraPaths The TeraPaths Collaboration Presented by Presented by Dimitrios Katramatos, BNL Dimitrios Katramatos, BNL.
Dynamic Lightpath Services on the Internet2 Network Rick Summerhill Director, Network Research, Architecture, Technologies, Internet2 TERENA May.
A User Driven Dynamic Circuit Network Implementation Evangelos Chaniotakis Network Engineering Group DANMS 2008 November Energy Sciences Network.
LHC OPEN NETWORK ENVIRONMENT STATUS UPDATE Artur Barczyk/Caltech Tokyo, May 2013 May 14, 2013
© 2006 Open Grid Forum Network Monitoring and Usage Introduction to OGF Standards.
1 TeraPaths and dynamic circuits  Strong interest to expand testbed to sites connected to Internet2 (especially US ATLAS T2 sites)  Plans started in.
OSCARS Roadmap Chin Guok Feb 6, 2009 Energy Sciences Network Lawrence Berkeley National Laboratory Networking for the Future of.
Internet2 Joint Techs Workshop, Feb 15, 2005, Salt Lake City, Utah ESnet On-Demand Secure Circuits and Advance Reservation System (OSCARS) Chin Guok
Dynamic Circuit Network An Introduction John Vollbrecht, Internet2 May 26, 2008.
SDN and OSCARS how-to Evangelos Chaniotakis Network Engineering Group ESCC Indianapoilis, July 2009 Energy Sciences Network Lawrence Berkeley National.
TeraPaths: A QoS Enabled Collaborative Data Sharing Infrastructure for Petascale Computing Research The TeraPaths Project Team Usatlas Tier 2 workshop.
Internet2 Dynamic Circuit Services and Tools Andrew Lake, Internet2 July 15, 2007 JointTechs, Batavia, IL.
Dynamic Network Services In Internet2 John Vollbrecht /Dec. 4, 2006 Fall Members Meeting.
1 ESnet4 IP Network and Science Data Network Configuration and Roll Out Schedule Projected Schedule as of Sept., 2006 For more information contact William.
1 Revision to DOE proposal Resource Optimization in Hybrid Core Networks with 100G Links Original submission: April 30, 2009 Date: May 4, 2009 PI: Malathi.
-1- ESnet On-Demand Secure Circuits and Advance Reservation System (OSCARS) David Robertson Internet2 Joint Techs Workshop July 18,
A Strawman for Merging LHCOPN and LHCONE infrastructure LHCOPN + LHCONE Meeting Washington, DC, Jan. 31, 2013 W. E. Johnston and Chin Guok.
DICE Diagnostic Service Joe Metzger Joint Techs Measurement Working Group January
Supporting Advanced Scientific Computing Research Basic Energy Sciences Biological and Environmental Research Fusion Energy Sciences High Energy Physics.
ARCHSTONE Advanced Resource Computation for Hybrid Service and TOpology NEtworks New Projects Kick-Off Meeting Fermilab, Batavia, IL September 28 th, 2009.
ESnet’s Use of OpenFlow To Facilitate Science Data Mobility Chin Guok Inder Monga, and Eric Pouyoul OGF 36 OpenFlow Workshop Chicago, Il Oct 8, 2012.
Connecting to the new Internet2 Network What to Expect… Steve Cotter Rick Summerhill FMM 2006 / Chicago.
1 ESnet4 IP Network and Science Data Network Configuration and Roll Out Schedule Projected Schedule as of Sept., 2006 For more information contact William.
J. Bunn, D. Nae, H. Newman, S. Ravot, X. Su, Y. Xia California Institute of Technology US LHCNet LHCNet WG September 12 th 2006.
July 19, 2005-LHC GDB T0/T1 Networking L. Pinsky--ALICE-USA1 ALICE-USA T0/T1 Networking Plans Larry Pinsky—University of Houston For ALICE-USA.
Page 1 Page 1 Dynamic Provisioning and Survivability in Hybrid Circuit/Packet Optical Networks DoE New Projects Kick-Off Meeting Chicago, Sept
The Internet2 Network and LHC Rick Summerhill Director Network Research, Architecture, and Technologies Internet2 LHC Meeting 23 October 2006 FERMI Lab,
Computing at Fermilab D. Petravick Fermilab August 16, 2007.
Multi-layer software defined networking in GÉANT
Data Plane Testing on USN, ESnet, and Internet2 Networks
Dynamic Network Services In Internet2
InterDomain Dynamic Circuit Network Demo
Establishing End-to-End Guaranteed Bandwidth Network Paths Across Multiple Administrative Domains The DOE-funded TeraPaths project at Brookhaven National.
Integration of Network Services Interface version 2 with the JUNOS Space SDK
Fall 2006 Internet2 Member Meeting
OSCARS Roadmap Chin Guok
Presentation transcript:

1 ESnet On-demand Secure Circuits and Advance Reservation System (OSCARS) Chin Guok Network Engineering Group ESCC July Energy Sciences Network Lawrence Berkeley National Laboratory Networking for the Future of Science

2 OSCARS Overview Path Computation Topology Reachability Contraints Scheduling AAA Availability Provisioning Signaling Security Resiliency/Redundancy OSCARS Guaranteed Bandwidth Virtual Circuit Services

3 Using OSCARS Web-Based User Interface (WBUI) –SSL connection to server –Username and password login SOAP Messages –SSL connection to server –WSDL service description –Signed SOAP messages <wsdl:definitions name="OSCARS" targetNamespace=" xmlns:xsd=" xmlns:wsdl=" xmlns:soap=" xmlns:tns=" This is WSDL for the OSCARS public reservation interface. These messages must be signed using the following WS-secuirty standards. The message is time stamped and includes the X.509 certificate of the signing entity. The timestamp, certificate and message body are all signed. DRAFT V1.0 Nov 2006 <xsd:schema targetNamespace=" elementFormDefault="qualified" xmlns:xsd=" xmlns:tns=" …

4 Source Sink MPLS labels are attached onto packets from Source and placed in separate queue to ensure guaranteed bandwidth. Regular production traffic queue. Interface queues SDN IP IP Link SDN Link RSVP, MPLS, LDP enabled on internal interfaces standard, best-effort queue high-priority queue LSP between ESnet border routers is determined using topology information from OSPF-TE. Path of LSP is explicitly directed to take SDN network where possible. On the SDN Ethernet switches all traffic is MPLS switched (layer 2.5). Layer 3 VC Service: Packets matching reservation profile IP flow-spec are filtered out (i.e. policy based routing), “policed” to reserved bandwidth, and injected into an LSP. Layer 2 VC Service: Packets matching reservation profile VLAN ID are filtered out (i.e. L2VPN), “policed” to reserved bandwidth, and injected into an LSP. Label Switched Path SDN Link The Mechanisms Underlying OSCARS

5 ESnet4 IP + SDN, 2011 Configuration (Est.) Denver Seattle Sunnyvale Raleigh Jacksonville KC El Paso Albuq. Tulsa Clev. Boise Wash. DC Salt Lake City Portland Baton Rouge Houston Pitts. NYC Boston Philadelphia Indianapolis (>1 ) Atlanta Nashville OC48 (26) (24) (3) LA San Diego UCSD Chicago StarLight Layer 1 optical nodes at eventual ESnet Points of Presence ESnet IP router hubs Layer 1 optical nodes not currently in ESnet plans Lab site ESnet IP internal switch hubs ESnet SDN OSCARS/MPLS switch hubs ESnet SDN internal switch hubs ESnet IP network (Internet2 circuits) ESnet Science Data Network (Internet2) ESnet SDN (NLR circuits) Lab supplied link LHC related link MAN link International IP Connections Status indefinite / not installed Internet2 circuit number (20)

6 OSCARS Status Update ESnet Centric Deployment –Prototype layer 3 (IP) guaranteed bandwidth virtual circuit service deployed in ESnet (1Q05) –Prototype layer 2 (Ethernet VLAN) virtual circuit service deployed in ESnet (3Q07) –Support soft reservations (2Q08) –Automatic graph generation of VCs (2Q08) –Support site administrator role (2Q08) Inter-Domain Collaborative Efforts –Terapaths Inter-domain interoperability for layer 3 virtual circuits demonstrated (3Q06) Inter-domain interoperability for layer 2 virtual circuits demonstrated at SC07 (4Q07) –LambdaStation Inter-domain interoperability for layer 2 virtual circuits demonstrated at SC07 (4Q07) –I2 DCN/DRAGON Inter-domain exchange of control messages demonstrated (1Q07) Integration of OSCARS and DRAGON has been successful (1Q07) –GEANT2 AutoBAHN Inter-domain reservation demonstrated at SC07 (4Q07) –DICE First draft of topology exchange schema has been formalized (in collaboration with NMWG) (2Q07), interoperability test demonstrated 3Q07 Initial implementation of reservation and signaling messages demonstrated at SC07 (4Q07) –Nortel Topology exchange demonstrated successfully 3Q07 Inter-domain interoperability for layer 2 virtual circuits demonstrated at SC07 (4Q07) –UVA Demonstrated token based authorization concept with OSCARS at SC07 (4Q07) –OGF NML-WG Actively working to combine work from NMWG and NDL Documents and UML diagram for base concepts have been drafted (2Q08) –GLIF GNI-API WG In process of designing common API and reference middleware implementation

7 OSCARS Operational Issues Site Managed Load-Balancing E.g. –Site wants 5 L2 VCs for 5 distinct site-to-site connections on a 10GE path –Some of the VCs share common link elements in the path –Each VC is capable of bursting up to 10Gb/s, but concurrently use of all 5 VCs are constrained by shared 10GE link element –To provision guaranteed bandwidth in OSCARS, cumulative bandwidth request for all 5 L2 VCs cannot exceed 10Gb/s (over- provisioning is not allowed) Redundant Backup VC E.g. –Site wants 2 L2 VCs on 10GE path, one for primary, and one for backup –Both VCs share common link elements in path –Only one of the the VCs will be in use at any time –Both VCs cannot be requested at 10Gb/s because they are viewed as distinct reservations by OSCARS

8 OSCARS Operational Changes Previous Configuration –Guaranteed Bandwidth VCs Over-provisioning is prevented at reservation request time Over-subscription is prevented by policing (hard drop) at time of use VC is configured to transit ESnet as Expedited Forwarding Class Current Configuration –Guaranteed Bandwidth VC with Over-Subscription Over-provisioning is prevented at reservation request time Over-subscription is allowed at transfer time Traffic below policed rate will transit ESnet as Expedited Forwarding Class Traffic above policed rate is not dropped, but remarked as Scavenger Class –Considerations Implementation of above enhancements are technology specific End-to-end inter-domain dynamic VCs may not support over- subscription Multi-lab coordination may be required to effective utilize bandwidth available in Scavenger Class

9 OSCARS Production Circuits (as of )

10 Funded by the DOE Office of Science Info URL: Services URL: Contact: –Chin Guok –David Robertson –Evangelios Chaniotakis OSCARS: Guaranteed Bandwidth Service