Presentation is loading. Please wait.

Presentation is loading. Please wait.

TeraPaths TeraPaths: Flow-Based End-to-End QoS Paths through Modern Hybrid WANs Presented by Presented by Dimitrios Katramatos, BNL Dimitrios Katramatos,

Published byTheodora Allison Modified over 9 years ago

Similar presentations

Presentation on theme: "TeraPaths TeraPaths: Flow-Based End-to-End QoS Paths through Modern Hybrid WANs Presented by Presented by Dimitrios Katramatos, BNL Dimitrios Katramatos,"— Presentation transcript:

1 TeraPaths TeraPaths: Flow-Based End-to-End QoS Paths through Modern Hybrid WANs Presented by Presented by Dimitrios Katramatos, BNL Dimitrios Katramatos, BNL

2 2 Outline  Background: the TeraPaths project  Objective  View of the world (network)  System architecture  Establishing flow-based end-to-end QoS paths  Domain interoperation  Experience and encountered issues  Project status and future work

3 3 Objective  Provide QoS guarantees at the individual data flow level, all the way to the end hosts, transparently  Data flows have varying priority/importance  Video streams  Critical data  Long duration transfers  Default “best effort” network behavior treats all data flows as equal  Capacity is not unlimited  Congestion causes bandwidth and latency variations  Performance and service disruption problems, unpredictability  Dynamic flow-based SLAs = schedule network utilization  Regulate and classify (prioritize) traffic  Select routing (if possible)

4 4 View of the Network WAN ctrl WAN 1 WAN 2 WAN 3 TeraPaths Domain ctrl TeraPaths RN TeraPaths WAN ctrl Site ASite BSite CSite D MPLS tunnel Dynamic circuit Domain control

5 5 TeraPaths TeraPaths Web Services Architecture Domain Controller DSM Web Interface NDC Database protected network API local WAN controllers Domain controllers (non-TeraPaths) WAN service clients (proxies) CLI s/w client Web browser NDC database Domain service clients (proxies) Site controller Site service hardware “virtual network engineer” remote

6 6 Establishing E2E QoS Paths  Multiple administrative domains  Cooperation, trust, but each maintains full control  Heterogeneous environment  Domain controller coordination through web services  Coordination models  Star  Requires extensive information for all domains  Daisy chain  Requires common flexible protocol across all domains  Hybrid (end-sites first)  Independent protocols  Direct end site negotiation … … …

7 7 Path Setup WAN WAN web services TeraPaths 1 2 3

8 8 Path Setup (ii)  End site subnets are configured by TeraPaths software instances (TeraPaths Domain Controllers or TDCs)  TDCs configure end site LANs to prioritize and regulate authorized flows via the DiffServ framework at the network device level  Source site polices/marks authorized flow packets  Destination site admits/re-polices/re-marks packets  End site LANs tx/rx marked packets to/from the WAN  WAN provides MPLS tunnels or dynamic circuits  Initiating TDC requests MPLS tunnel or dynamic circuit with matching bandwidth and lifetime, or…  TDC groups flows with common src/dst into MPLS tunnel or dynamic circuit with aggregate bandwidth and lifetime  WAN preserves packet markings

9 9 Path Setup (iii)  WAN domains interoperate  Each end site’s TDC has a single point of contact for WAN services  TDCs have no knowledge of WAN internals other than what is exposed by the WAN services  End sites have no direct control over the WAN  Either tunnel or circuit through WAN  Cannot mix and match

10 10 Interoperating with WAN Services  TeraPaths “proxy” servers  Implement interface required by TeraPaths core  Hide WAN service differences  Clients to WAN web services (currently OSCARS / DRAGON)  Close cooperation with ESnet and I2 development teams  Submit reservations for MPLS tunnels or dynamic circuits  Handle security requirements  Handle errors  MPLS tunnels vs. dynamic circuits  Utilization requires different approach

11 11 L2 vs. L3 (i)  MPLS tunnel starts and ends within WAN domain  Packets are admitted into the tunnel based on flow ID information (IP src, port src, IP dst, port dst )  WAN admission performed at the first router of the tunnel (ingress) WAN border router MPLS tunnel ingress/egress router MPLS tunnel ingress/egress router

12 12 L2 vs. L3 (ii)  Dynamic circuit appears as VLAN connecting end site border routers with single hop  Cannot use flow ID data directly  Flow must be directed to the proper VLAN  WAN admission performed within end site LAN  Select VLAN with Policy Based Routing (PBR) at both ends  Route can be selected on a per-flow basis WAN switch border router

13 13 Site LAN Setup (DiffServ, PBR) PBR

14 14 3 rd Party Network Segments  Some network segments may not be automatically configurable  Regional providers  Campus segments  Border routers  Static (once only) configuration required  Allow DSCP bits to go through  Only allow specific interfaces  ACLs and aggregate policers  Configure VLANs to be used for dynamic circuits  Trunked VLAN pass-thru  Virtual border router

15 15 Alternative Site LAN Setup (DSCP, VLAN pass-thru) PBR VLAN pass-thru

16 16 VLAN Setup for L2 TeraPaths-controlled “virtual border” router (directs flows w/PBR) e.g.,1 to X, 2 to Y WAN Site’s Border Router trunked VLAN pass-thru 50 VLAN ids (3550-3599) 3550  X  Y  3599 interfaces trust DSCP TeraPaths-controlled host router #X #Y DSCP-friendly LAN host 1host nhost 2... 1 to X 2 to Y can be the same device Regional Provider’s Router

17 17 L2-Specific Issues  Limitations with VLANs  Tag range (tentatively selected 50 VLANs – 3550 to 3599)  Each site may have its own range  Tag conflicts  Rely on WAN service  Eliminate by synchronizing site databases  VLAN renaming (if/when possible)  Scalability issues  Flow grouping  Forward flows through same virtual WAN circuit  Create circuit with new parameters / switch current flows / cancel old circuit  Modify WAN reservations (if/when possible)  PBR overhead  Virtual border router  Sensitive/3 rd party network segments  VLAN pass-thru

18 18 Status  Currently: basic software ready, infrastructure tested  API and web interface, simple negotiation  Multiple service classes per site with statically allocated bandwidth  Utilization of L3 paths (MPLS tunnels) through ESnet (since 2006)  Utilization of L2 paths (dynamic circuits) through ESnet and Internet2 (demonstrated at SC’07)  “Circle of trust” security model, X.509 certificates  Simple user AAA  BNL, UMich, BU, SLAC  Multiple successful pass-thru configurations (BNL, UMich, NoX, Merit, MiLR)

19 19 TeraPaths Testbed during SC’07 US ATLAS T2 sites BNL OU UC/IUUMichBU SLAC ESnet UTA I2 NLR NoX StarLight UltraLight MiLR/Merit L2 (dynamic circuit) L3 (MPLS tunnel) L2 and L3

20 20 Weather Map

21 21 Traffic Regulation (demo) 1 2 2

22 22 In Progress / Future  Testbed  Expansion to more US ATLAS Tier 2 sites and beyond  BNL testbed router upgrade to 10Gbps  Support for different hardware  Dynamic bandwidth allocation within service classes  Flow grouping through WAN circuits  CLI, extended API, configurable negotiation  Grid-style AAA (GUMS/VOMS)  Plug-ins: SRM (dCache), others  Expand collaboration/interoperation http://www.terapaths.org

Download ppt "TeraPaths TeraPaths: Flow-Based End-to-End QoS Paths through Modern Hybrid WANs Presented by Presented by Dimitrios Katramatos, BNL Dimitrios Katramatos,"

Similar presentations

LambdaStation Phil DeMar Don Petravick NeSC Oct. 7, 2004.

LambdaStation Phil DeMar Don Petravick NeSC Oct. 7, 2004.
Implementing Inter-VLAN Routing

Implementing Inter-VLAN Routing
Multi-Layer Switching Layers 1, 2, and 3. Cisco Hierarchical Model Access Layer –Workgroup –Access layer aggregation and L3/L4 services Distribution Layer.

Multi-Layer Switching Layers 1, 2, and 3. Cisco Hierarchical Model Access Layer –Workgroup –Access layer aggregation and L3/L4 services Distribution Layer.
Tiziana FerrariWP2.3 Advance Reservation Demonstration: Description and set-up 1 WP2.3 Advance Reservation Demonstration: Description and set-up DRAFT,

Tiziana FerrariWP2.3 Advance Reservation Demonstration: Description and set-up 1 WP2.3 Advance Reservation Demonstration: Description and set-up DRAFT,
Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.

Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.
1 Chin Guok ESnet Network Engineer David Robertson DSD Computer Software Engineer Lawrence Berkeley National Laboratory.

1 Chin Guok ESnet Network Engineer David Robertson DSD Computer Software Engineer Lawrence Berkeley National Laboratory.
Tiziana FerrariWP2.3 Advance Reservation Demonstration: Description and set-up 1 WP2.3 Advance Reservation Demonstration: Description and set-up DRAFT,

Tiziana FerrariWP2.3 Advance Reservation Demonstration: Description and set-up 1 WP2.3 Advance Reservation Demonstration: Description and set-up DRAFT,
TeraPaths: End-to-End Network Path QoS Configuration Using Cross-Domain Reservation Negotiation Bruce Gibbard Dimitrios Katramatos Shawn McKee Dantong.

TeraPaths: End-to-End Network Path QoS Configuration Using Cross-Domain Reservation Negotiation Bruce Gibbard Dimitrios Katramatos Shawn McKee Dantong.
1 Chin Guok ESnet Network Engineer David Robertson DSD Computer Software Engineer Lawrence Berkeley National Laboratory.

1 Chin Guok ESnet Network Engineer David Robertson DSD Computer Software Engineer Lawrence Berkeley National Laboratory.
CPSC 601.43 Topics in Multimedia Networking A Mechanism for Equitable Bandwidth Allocation under QoS and Budget Constraints D. Sivakumar IBM Almaden Research.

CPSC Topics in Multimedia Networking A Mechanism for Equitable Bandwidth Allocation under QoS and Budget Constraints D. Sivakumar IBM Almaden Research.
Differentiated Services. Service Differentiation in the Internet Different applications have varying bandwidth, delay, and reliability requirements How.

Differentiated Services. Service Differentiation in the Internet Different applications have varying bandwidth, delay, and reliability requirements How.
Resource Management – a Solution for Providing QoS over IP Tudor Dumitraş, Frances Jen-Fung Ning and Humayun Latif.

Resource Management – a Solution for Providing QoS over IP Tudor Dumitraş, Frances Jen-Fung Ning and Humayun Latif.
Internet QoS Syed Faisal Hasan, PhD (Research Scholar Information Trust Institute) Visiting Lecturer ECE CS/ECE 438: Communication Networks.

Internet QoS Syed Faisal Hasan, PhD (Research Scholar Information Trust Institute) Visiting Lecturer ECE CS/ECE 438: Communication Networks.
ESnet On-demand Secure Circuits and Advance Reservation System (OSCARS) Chin Guok Network Engineering Group Thomas Ndousse Visit February 6 2008 Energy.

ESnet On-demand Secure Circuits and Advance Reservation System (OSCARS) Chin Guok Network Engineering Group Thomas Ndousse Visit February Energy.
Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.

Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.
Lawrence G. Roberts CEO Anagran September 2005 Advances Toward Economic and Efficient Terabit LANs and WANs.

Lawrence G. Roberts CEO Anagran September 2005 Advances Toward Economic and Efficient Terabit LANs and WANs.
TeraPaths : A QoS Collaborative Data Sharing Infrastructure for Petascale Computing Research USATLAS Tier 1 & Tier 2 Network Planning Meeting December.

TeraPaths : A QoS Collaborative Data Sharing Infrastructure for Petascale Computing Research USATLAS Tier 1 & Tier 2 Network Planning Meeting December.
TeraPaths: A QoS Collaborative Data Sharing Infrastructure for Petascale Computing Research Bruce Gibbard & Dantong Yu High-Performance Network Research.

TeraPaths: A QoS Collaborative Data Sharing Infrastructure for Petascale Computing Research Bruce Gibbard & Dantong Yu High-Performance Network Research.
Scalable, efficient, personalized, end-to-end QoS Provisioning Polyrakis Andreas Dimitrios Kalogeras 21.03.2002 GRNET.

Scalable, efficient, personalized, end-to-end QoS Provisioning Polyrakis Andreas Dimitrios Kalogeras GRNET.
End-to-end resource management in DiffServ Networks –DiffServ focuses on singal domain –Users want end-to-end services –No consensus at this time –Two.

End-to-end resource management in DiffServ Networks –DiffServ focuses on singal domain –Users want end-to-end services –No consensus at this time –Two.

Similar presentations

Ads by Google