Presentation is loading. Please wait.

Presentation is loading. Please wait.

Sonny (Sechang) Son Computer Sciences Department University of Wisconsin-Madison Dealing with Internet Connectivity in Distributed.

Published byAnissa Maxwell Modified over 9 years ago

Similar presentations

Presentation on theme: "Sonny (Sechang) Son Computer Sciences Department University of Wisconsin-Madison Dealing with Internet Connectivity in Distributed."— Presentation transcript:

1 Sonny (Sechang) Son Computer Sciences Department University of Wisconsin-Madison sschang@cs.wisc.edu Dealing with Internet Connectivity in Distributed Computing

2 www.cs.wisc.edu/condor 2 Firewalls & Private Networks › Firewalls  cheap and good way to protect networks  headquarters of integrated security systems › Private networks  A solution to IPv4 address shortage problem  Easy network management & easy address planning › Connections are blocked!

3 www.cs.wisc.edu/condor 3 Connectivity Problem Central Manager Exec MachineSubmit Machine startd negotiation Job Xfer shadowschedstarter Ad match

4 www.cs.wisc.edu/condor 4 Connectivity Problem Central Manager Exec MachineSubmit Machine startd negotiation Job Xfer shadowschedstarter Ad match X X

5 www.cs.wisc.edu/condor 5 Connectivity Problem Central Manager Exec MachineSubmit Machine startd negotiation Job Xfer shadowschedstarter Ad match X X

6 www.cs.wisc.edu/condor 6 Connectivity Problem › Collaboration becomes difficult or impossible › Resources are wasted

7 www.cs.wisc.edu/condor 7 Agenda › Introduction › DPF (Dynamic Port Forwarding) › GCB (Generic Connection Brokering) › Future Work › Conclusion

8 www.cs.wisc.edu/condor 8 Dynamic Port Forwarding B DPF lib DPF agent A Client Server NAT X A  XA  B B = socket(); bind(B, ANY); getsockname(B, X ); BIND (B) X X  B X A = socket(); connect(A, X);

9 www.cs.wisc.edu/condor 9 DPF › Basic Idea: On-demand open/close › Supports Linux NAT box › Can support any firewall with APIs such that open, close, list › Fast & scalable

10 www.cs.wisc.edu/condor 10 GCB: socket registration BGCB lib Broker X Server AGCB lib Client B = socket(); bind(B, ANY); getsockname(B, X ) BIND (B) X X

11 www.cs.wisc.edu/condor 11 GCB: passive connection B GCB lib Broker X Server AGCB lib Client connect(A, X ) CONNECT (X) PASSIVE CONTACT (A)

12 www.cs.wisc.edu/condor 12 GCB: relay connection B GCB lib Broker X Server AGCB lib Client connect(A, X ) CONNECT (X) ACTIVE (X) CONTACT (Y) Y

13 www.cs.wisc.edu/condor 13 GCB › Basic Idea: reversing the direction underneath the application › Supporting Environments  No requirement to firewalls  Outbound connections are allowed › GCB requires no control on your firewall

14 www.cs.wisc.edu/condor 14 Future Works › Support for multiple connection mechanisms › Security › Dynamic open/close for outbound › eGCB (extended GCB)

15 www.cs.wisc.edu/condor 15 Connection Setup inagent outagent server client F/W 1) registration 2) open for outbound 3) negotiation 4) connection setup

16 www.cs.wisc.edu/condor 16 Conclusions › DPF is fast and scalable › GCB requires no control on headnodes › eGCB provides wide coverage › GCB and eGCB can be used by other applications

17 www.cs.wisc.edu/condor 17 Thank you! Sonny (Sechang) Son Rm# 3387 sschang@cs.wisc.edu

Download ppt "Sonny (Sechang) Son Computer Sciences Department University of Wisconsin-Madison Dealing with Internet Connectivity in Distributed."

Similar presentations

Todd Tannenbaum Condor Team GCB Tutorial OGF 2007.

Todd Tannenbaum Condor Team GCB Tutorial OGF 2007.
Current methods for negotiating firewalls for the Condor ® system Bruce Beckles (University of Cambridge Computing Service) Se-Chang Son (University of.

Current methods for negotiating firewalls for the Condor ® system Bruce Beckles (University of Cambridge Computing Service) Se-Chang Son (University of.
Cloud computing is used to describe a variety of computing concepts that involve a large number of computers connected through a real-time communication.

Cloud computing is used to describe a variety of computing concepts that involve a large number of computers connected through a real-time communication.
CMPE 150- Introduction to Computer Networks 1 CMPE 150 Fall 2005 Lecture 25 Introduction to Computer Networks.

CMPE 150- Introduction to Computer Networks 1 CMPE 150 Fall 2005 Lecture 25 Introduction to Computer Networks.
The Future of HTCondor's Networking or: How I Learned to Stop Worrying and Love IPv6 Alan De Smet

The Future of HTCondor's Networking or: How I Learned to Stop Worrying and Love IPv6 Alan De Smet
Dan Bradley Computer Sciences Department University of Wisconsin-Madison Schedd On The Side.

Dan Bradley Computer Sciences Department University of Wisconsin-Madison Schedd On The Side.
CSE 222a Final Project - UCSD Spring 2007 p2p DNS addressing Presented By- Anup Tapadia Alexander Loukissas Justin Wu.

CSE 222a Final Project - UCSD Spring 2007 p2p DNS addressing Presented By- Anup Tapadia Alexander Loukissas Justin Wu.
Web-based Distributed Flexible Manufacturing System (FMS) Monitoring and Control Student: Wei Liu Instructor: Dr. Chang Apr. 23, 2003.

Web-based Distributed Flexible Manufacturing System (FMS) Monitoring and Control Student: Wei Liu Instructor: Dr. Chang Apr. 23, 2003.
Design and Implementation of Alternative Route Against DDOS Jing Yang and Su Li.

Design and Implementation of Alternative Route Against DDOS Jing Yang and Su Li.
Secure Generic Connection Brokering – SGCB JPDPS Tel-Aviv Dec 2003 1 Secure Generic Connection Brokering SGCB enhancing secure submission of grid jobs.

Secure Generic Connection Brokering – SGCB JPDPS Tel-Aviv Dec Secure Generic Connection Brokering SGCB enhancing secure submission of grid jobs.
Hardware Firewall Feature © N. Ganesan, Ph.D.. Chapter Objectives Show the configuration of a hardware firewall such as Dlink DI 604 Illustrate the sharing.

Hardware Firewall Feature © N. Ganesan, Ph.D.. Chapter Objectives Show the configuration of a hardware firewall such as Dlink DI 604 Illustrate the sharing.
Barracuda Networks Confidential1 Barracuda Backup Service Integrated Local & Offsite Data Backup.

Barracuda Networks Confidential1 Barracuda Backup Service Integrated Local & Offsite Data Backup.
Sechang Son Computer Sciences Department University of Wisconsin-Madison Network Bandwidth Regulation.

Sechang Son Computer Sciences Department University of Wisconsin-Madison Network Bandwidth Regulation.
Condor Project Computer Sciences Department University of Wisconsin-Madison Asynchronous Notification in Condor By Vidhya Murali.

Condor Project Computer Sciences Department University of Wisconsin-Madison Asynchronous Notification in Condor By Vidhya Murali.
FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.

FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.
Jaeyoung Yoon Computer Sciences Department University of Wisconsin-Madison Virtual Machines in Condor.

Jaeyoung Yoon Computer Sciences Department University of Wisconsin-Madison Virtual Machines in Condor.
WSV404 DirectAccess Server (Server 2008 R2) DirectAccess Client (Windows 7) Internet Native IPv6 6to4 Teredo IP-HTTPS Tunnel over IPv4 UDP, HTTPS,

WSV404 DirectAccess Server (Server 2008 R2) DirectAccess Client (Windows 7) Internet Native IPv6 6to4 Teredo IP-HTTPS Tunnel over IPv4 UDP, HTTPS,
DYNAMIC HOST CONFIGURATION PROTOCOL (DHCP) BY: SAMHITA KAW IS 373.

DYNAMIC HOST CONFIGURATION PROTOCOL (DHCP) BY: SAMHITA KAW IS 373.
Data Center Network Redesign using SDN

Data Center Network Redesign using SDN
Sales Kickoff - ARCserve

Sales Kickoff - ARCserve

Similar presentations

Ads by Google