Xrootd Proxy Service Andrew Hanushevsky Heinz Stockinger Stanford Linear Accelerator Center SAG 2004 20-September-04

Slides:

Advertisements

Similar presentations

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 9 Distributed Systems Architectures Slide 1 1 Chapter 9 Distributed Systems Architectures.

Advertisements

Lecturer: Sebastian Coope Ashton Building, Room G.18 COMP 201 web-page: Lecture.

Job submission architectures in GRID environment Masamichi Ando M1 Student Taura Lab. Department of Information Science and Technology.

Distributed components

GRID DATA MANAGEMENT PILOT (GDMP) Asad Samar (Caltech) ACAT 2000, Fermilab October , 2000.

Distributed Systems Architectures

City University London

EEC-681/781 Distributed Computing Systems Lecture 3 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

ProjectWise Overview – Part 1 V8 XM Edition

5.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 5: Working with File Systems.

1 Andrew Hanushevsky - HEPiX, October 6-8, 1999 Mass Storage For BaBar at SLAC Andrew Hanushevsky Stanford.

.NET Mobile Application Development Introduction to Mobile and Distributed Applications.

1-1 Incentive Mechanisms for Large Collaborative Resource Sharing Objectives:  Why Resource harnessing  Resource sharing  Assumptions  Considerations.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 12 Slide 1 Distributed Systems Design 1.

Introduction to Cyberspace

Client/Server Architectures

PHASE 3: SYSTEMS DESIGN Chapter 8 System Architecture.

11 REVIEWING MICROSOFT ACTIVE DIRECTORY CONCEPTS Chapter 1.

Tanenbaum & Van Steen, Distributed Systems: Principles and Paradigms, 2e, (c) 2007 Prentice-Hall, Inc. All rights reserved DISTRIBUTED SYSTEMS.

Experiences Deploying Xrootd at RAL Chris Brew (RAL)

Section 11.1 Identify customer requirements Recommend appropriate network topologies Gather data about existing equipment and software Section 11.2 Demonstrate.

CSC 456 Operating Systems Seminar Presentation (11/13/2012) Leon Weingard, Liang Xin The Google File System.

©Ian Sommerville 2006Software Engineering, 8th edition. Chapter 12 Slide 1 Distributed Systems Architectures.

File System Access (XRootd) Andrew Hanushevsky Stanford Linear Accelerator Center 13-Jan-03.

Institute of Computer and Communication Network Engineering OFC/NFOEC, 6-10 March 2011, Los Angeles, CA Lessons Learned From Implementing a Path Computation.

The Next Generation Root File Server Andrew Hanushevsky Stanford Linear Accelerator Center 27-September-2004

1 Client Server Architecture over the Internet Week - 2.

Rule-Based Data Management Systems Reagan W. Moore Wayne Schroeder Mike Wan Arcot Rajasekar {moore, schroede, mwan, {moore, schroede, mwan,

BaBar Grid Computing Eleonora Luppi INFN and University of Ferrara - Italy.

Designing Authentication for a Microsoft Windows 2000 Network Designing Authentication in a Microsoft Windows 2000 Network Designing Kerberos Authentication.

Architectures of distributed systems Fundamental Models

Storage Tank in Data Grid Shin, SangYong(syshin, #6468) IBM Grid Computing August 23, 2003.

Advanced Computer Networks Topic 2: Characterization of Distributed Systems.

N. GSU Slide 1 Chapter 05 Clustered Systems for Massive Parallelism N. Xiong Georgia State University.

Copyright © cs-tutorial.com. Overview Introduction Architecture Implementation Evaluation.

Xrootd Update Andrew Hanushevsky Stanford Linear Accelerator Center 15-Feb-05

NT SECURITY Introduction Security features of an operating system revolve around the principles of “Availability,” “Integrity,” and Confidentiality. For.

ROOT and Federated Data Stores What Features We Would Like Fons Rademakers CERN CC-IN2P3, Nov, 2011, Lyon, France.

Securely Synchronize and Share Enterprise Files across Desktops, Web, and Mobile with EasiShare on the Powerful Microsoft Azure Cloud Platform MICROSOFT.

Performance and Scalability of xrootd Andrew Hanushevsky (SLAC), Wilko Kroeger (SLAC), Bill Weeks (SLAC), Fabrizio Furano (INFN/Padova), Gerardo Ganis.

Xrootd Present & Future The Drama Continues Andrew Hanushevsky Stanford Linear Accelerator Center Stanford University HEPiX 13-October-05

1 Secure Peer-to-Peer File Sharing Frans Kaashoek, David Karger, Robert Morris, Ion Stoica, Hari Balakrishnan MIT Laboratory.

6/23/2005 R. GARDNER OSG Baseline Services 1 OSG Baseline Services In my talk I’d like to discuss two questions:  What capabilities are we aiming for.

Copyright © 2006, GemStone Systems Inc. All Rights Reserved. Increasing computation throughput with Grid Data Caching Jags Ramnarayan Chief Architect GemStone.

CERN - IT Department CH-1211 Genève 23 Switzerland t High Availability Databases based on Oracle 10g RAC on Linux WLCG Tier2 Tutorials, CERN,

David Foster LCG Project 12-March-02 Fabric Automation The Challenge of LHC Scale Fabrics LHC Computing Grid Workshop David Foster 12 th March 2002.

Flight is a SaaS Solution that Accelerates the Secure Transfer of Large Files and Data Sets Into and Out of Microsoft Azure Blob Storage MICROSOFT AZURE.

CSC 480 Software Engineering Lecture 17 Nov 4, 2002.

Federated Data Stores Volume, Velocity & Variety Future of Big Data Management Workshop Imperial College London June 27-28, 2013 Andrew Hanushevsky, SLAC.

Latest Improvements in the PROOF system Bleeding Edge Physics with Bleeding Edge Computing Fons Rademakers, Gerri Ganis, Jan Iwaszkiewicz CERN.

GDB meeting - Lyon - 16/03/05 An example of data management in a Tier A/1 Jean-Yves Nief.

Breaking the frontiers of the Grid R. Graciani EGI TF 2012.

COMP1321 Digital Infrastructure Richard Henson March 2016.

Cofax Scalability Document Version Scaling Cofax in General The scalability of Cofax is directly related to the system software, hardware and network.

Fault – Tolerant Distributed Multimedia Streaming Web Application By Nirvan Sagar – Srishti Ganjoo – Syed Shahbaaz Safir

DISTRIBUTED FILE SYSTEM- ENHANCEMENT AND FURTHER DEVELOPMENT BY:- PALLAWI(10BIT0033)

Networking Week #10 OBJECTIVES Chapter #6 Questions Review Chapter #8.

Distributed Systems Architectures Chapter 12. Objectives  To explain the advantages and disadvantages of different distributed systems architectures.

Distributed Systems Architectures. Topics covered l Client-server architectures l Distributed object architectures l Inter-organisational computing.

Web and Proxy Server.

Eleonora Luppi INFN and University of Ferrara - Italy

Meemim's Microsoft Azure-Hosted Knowledge Management Platform Simplifies the Sharing of Information with Colleagues, Clients or the Public MICROSOFT AZURE.

CSC 480 Software Engineering

Architectures of distributed systems Fundamental Models

Architectures of distributed systems Fundamental Models

Architectures of distributed systems

MonteCarlo production for the BaBar experiment on the Italian grid

Architectures of distributed systems Fundamental Models

Database System Architectures

Presentation transcript:

Xrootd Proxy Service Andrew Hanushevsky Heinz Stockinger Stanford Linear Accelerator Center SAG September-04

20-Sept-042: xrootd The BaBar Experiment Use big-bang energies to create B meson particles Look at collision decay products Answer the question “where did all the anti-matter go?” 500 physicists collaborating from >70 sites in 10 countries USA, Canada, China, France, Germany, Italy, Norway, Russia, UK, Taiwan The experiment produces large quantities of data 300 TBytes/year for 10 years Most data stored as objects using Root persistency framework Some data stored in Objectivity/DB database Expected to double every year as detector luminosity increases Heavy computational load 5, GHZ CPU’s spread over 35 sites world-wide Work is distributed across the collaboration

20-Sept-043: xrootd BaBar is the Forerunner LHC at CERN The Large Hadron Collider Due to start in 2007 Will generate several order of magnitude more data Will require even more compute cycles Example: ATLAS Probe the Higgs boson energy range Explore the more exotic reaches of physics

20-Sept-044: xrootd The Data Access Need Scalable high performance access to data Must scale to 100’s if not 1000’s of data servers Most data is read-only Data is written only once Versioned Secondary access to distributed data As a backup strategy

20-Sept-045: xrootd Solution Fundamentals Extensible base server architecture Allows for high performance implementation Rich but efficient server protocol Combines file serving with P2P elements Allows client hints for improved performance Administrative security Implies a structured peer-to-peer framework

20-Sept-046: xrootd The Implementation High Performance File-Based Access Fluidly scalable Works well in single server environments Scales beyond 32,000 cooperative data servers Naively extensible Requirement for this level of scaling Servers can be added at any time without disruption Fully fault-tolerant Servers can be removed at any time without disruption Flexible Security Allowing use of almost any protocol

20-Sept-047: xrootd Entities & Relationships data xrootd olbdxrootd olbd Data Clients Redirectors Data Servers M S ctl olbd Control Network Managers & Servers (resource info, file location) xrootd Data Network (redirectors steer clients to data Data servers provide data)

20-Sept-048: xrootd Example: SLAC Configuration client machines kan01kan02kan03kan04 kanxx bbr-rdr03bbr-rdr04 bbr-rdr-a data servers redirectors

20-Sept-049: xrootd Data Growth & More Fault Tolerance BaBar Data Is Replicated Backup Strategy Processing Strategy Some data only available at one site Use grid techniques to make data accessible But, when thing go wrong would like access The proxy solution

20-Sept-0410: xrootd The 10,000 Foot View IN2P3 fr FZK de RAL uk INFN it SLAC us

20-Sept-0411: xrootd The Reality Sites has a fear of hosting… Distributed Denial of Service Attacks Massive illegal file sharing Only certain hosts allowed to get outside Rarely batch worker machines The ones that need remote data most The Firewall Issue

20-Sept-0412: xrootd A Closer Look SLAC IN2P3 RAL xrootd’s RAL proxy IN2P3 proxy Firewalls require Proxy servers

20-Sept-0413: xrootd Proxy Service Attempts to address competing goals Security Deal with firewalls Scalability Administrative Configuration Performance Ad hoc forwarding for near-zero wait time Intelligent caching in local domain

20-Sept-0414: xrootd Proxy Implementation Uses capabilities of olbd and xrootd Simply an extension of local load balancing Implemented as a special file system type Interfaces in the Logical File System layer (ofs) Functions in the Physical File System layer (oss) Primary developer is Heinz Stockinger

20-Sept-0415: xrootd Proxy Interactions client machines red01data02data03proxy01 local olb data01data02data03data04 proxy olb local olb RAL SLAC

20-Sept-0416: xrootd Why This Arrangement? Minimizes cross-domain knowledge Necessary for scalability in all areas Security Configuration Fault tolerance & recovery

20-Sept-0417: xrootd Scalable Proxy Security SLAC PROXY OLBDRAL PROXY OLBD Authenticate & develop session key 2 2 Distribute session key to authenticated subscribers 3 3 Data servers can log into each other using session key Data Servers

20-Sept-0418: xrootd Proxy Performance Introduces minimal latency overhead Virtually undetectably from US/Europe Negligible on faster links 2% slower on fast US/US links 10% slower on LAN Can be further improved Parallel streams Better window size calculation Asynchronous I/O

20-Sept-0419: xrootd Proxy Study Conclusion Proxy Service easily integrates into xrootd Largely due to peer-to-peer architecture Provides enhanced service at minimal cost Allows access to addition data sources Increases fault tolerance Covers up for grid transfer mistakes Scalable in all aspects Security, number of servers, administration

20-Sept-0420: xrootd Overall Conclusion xrootd provides high performance file access Improves over afs, ams, nfs, etc. Unique performance, usability, scalability, security, compatibility, and recoverability characteristics Should scale to tens of thousand clients Will be distributed as part of CERN’s root package Open software, supported by SLAC (server), INFN-Padova (client) CERN (security, packaging)