Presentation is loading. Please wait.

Presentation is loading. Please wait.

FIRE – GENI collaboration workshop 17-18 Sep 2015 Washington.

Published byBridget Simon Modified over 9 years ago

Similar presentations

Presentation on theme: "FIRE – GENI collaboration workshop 17-18 Sep 2015 Washington."— Presentation transcript:

1 FIRE – GENI collaboration workshop 17-18 Sep 2015 Washington

2 Multidomain Service experience Seen from a production network point of view (GÉANT and GARR), with the eye of a FIRE participant. Effort on MD services in GÉANT started in the GN2 project about 10 years ago on: -Bandwidth on Demand (end to end multidomain circuit provisioning). Excellent collaboration with Internet 2 and ESnet (which offer AL2S and OSCARS) -perfSONAR (multidomain monitoring), an architecture based on distributed probes, an archive and a domain manager. An effort still ongoing with I2. Used by research communities. FIRE-GENI Washington 18 Sep 2015 Mauro Campanella 2

3 Multidomain Service experience What went well  Separation of the intra and inter domain control component  Non proprietary reservation system with open interfaces  Independency from specific transmission technology (SDH, Ethernet, Infiniband,...)  Creation of technology and control system SW proxies (more than an API)  Simple network description language  Network abstraction (for BoD, path computation and preferred topology exposure)  Partially distributed intelligence (probes in perfSONAR)  Peer to peer model in BoD and the concept of "supportive" domain FIRE-GENI Washington 18 Sep 2015 Mauro Campanella 3

4 Multidomain Service experience What made things difficult :  Lack of standards (for BoD at that time) implying a whole system had to be built  Complex software development  The quest for being too general in the solution  Need for ad-hoc system installation and maintenance, no simple support in network equipment (need proxies)  AAI and Security fully developed at a later stage  perfSONAR was engineered on the hypothesis that monitoring data collected in each domain can be stitched to provide a reliable end-to end measurement. Turned out a e2e measurements with (virtual) probes at each end are much simpler and effective. FIRE-GENI Washington 18 Sep 2015 Mauro Campanella 4

5 The ICT landscape evolution -MPLS, BGP protocol extensions for multidomain transport, carrier grade -IP (packets) and Ethernet are the standard data transport element (plus some Infiniband for data centers) -Virtualization and orchestration are standard tools (Openstack) -Software for everything FIRE-GENI Washington 18 Sep 2015 Mauro Campanella 5

6 Multidomain VPN service (MD VPN) Multidomain VPN service (MD VPN) GÉANT is deploying a circuit provisioning service based on the extension of BGP and MPLS for label carrying. GÉANT has been configured as a "Carrier of Carriers", an interprovider VPN solution, built upon the following standards: -RFC 3107, Carrying Label Information in BGP-4 -RFC 4364, BGP/MPLS IP Virtual Private Networks (VPNs) -RFC 5601, Pseudowire (PW) Management Information Base (MIB) -RFC 5603, Ethernet Pseudowire Management Information Base -RFC 6368, Internal BGP as the Provider/Customer Edge Protocol for BGP/MPLS IP Virtual Private Networks (VPNs). Simple to configure for the domains, supported by all major HW vendors, 'all' types of VPNs FIRE-GENI Washington 18 Sep 2015 Mauro Campanella 6

7 Multidomain VPN service (MD VPN) Multidomain VPN service (MD VPN) FIRE-GENI Washington 18 Sep 2015 Mauro Campanella 7 L2 VPN IP/MPLS, BGP are the enabling technologies IP/MPLS, BGP are the enabling technologies L3 VPN

8 ONOS demo at SIGCOMM (Aug 2015) FIRE-GENI Washington 18 Sep 2015 Mauro Campanella 8

9 MD challenges Trust and Identity, Policies, cost -More sophisticated policies, cost definition and management, inside and between domains (including Identity, attributes, quotas). -Develop more non web-based AAI -Balance between fine grained, on demand and predefined 'trust' catch-all rules (even full trust, a 'flat fee' policy) Software-ization -From technology protocols to sophisticated rules/policies at all network layers (including Trust and Identity) Cybersecurity -To be embedded in the rules/policies effort and more (what o do in case of DDoS e.g.) FIRE-GENI Washington 18 Sep 2015 Mauro Campanella 9

10 MD challenges Resource description language -A further step towards a full ontology. The language should be simple, scriptable, contain AAI and cost hooks Monitoring - Provider view versus User view, identification of relationship between virtual and physical resources, identification of ownership For commercial providers (network and clouds) the interest in developing multidomain services and resource sharing is probably quite low. Just capacity brokering. For Research and Education, an open, secure, inter domain communication (for services, resources, information sharing,...) is key instead and probably for smart cities too. FIRE-GENI Washington 18 Sep 2015 Mauro Campanella 10

Download ppt "FIRE – GENI collaboration workshop 17-18 Sep 2015 Washington."

Similar presentations

Circuit Monitoring July 16 th 2011, OGF 32: NMC-WG Jason Zurawski, Internet2 Research Liaison.

Circuit Monitoring July 16 th 2011, OGF 32: NMC-WG Jason Zurawski, Internet2 Research Liaison.
NEW OUTLOOK ON MULTI-DOMAIN AND MULTI-LAYER TRAFFIC ENGINEERING Adrian Farrel

NEW OUTLOOK ON MULTI-DOMAIN AND MULTI-LAYER TRAFFIC ENGINEERING Adrian Farrel
The Impact of SDN On MPLS Networks Adrian Farrel Juniper Networks

The Impact of SDN On MPLS Networks Adrian Farrel Juniper Networks
Internetworking II: MPLS, Security, and Traffic Engineering

Internetworking II: MPLS, Security, and Traffic Engineering
DRAGON Dynamic Resource Allocation via GMPLS Optical Networks Tom Lehman University of Southern California Information Sciences Institute (USC/ISI) National.

DRAGON Dynamic Resource Allocation via GMPLS Optical Networks Tom Lehman University of Southern California Information Sciences Institute (USC/ISI) National.
The Case for Enterprise Ready Virtual Private Clouds Timothy Wood, Alexandre Gerber *, K.K. Ramakrishnan *, Jacobus van der Merwe *, and Prashant Shenoy.

The Case for Enterprise Ready Virtual Private Clouds Timothy Wood, Alexandre Gerber *, K.K. Ramakrishnan *, Jacobus van der Merwe *, and Prashant Shenoy.
BoD and MD-VPN service status in GÉANT SA3 – Network Service Delivery LHCOPN and LHCONE joint meeting – Pasadena (US) 3-4 December 2013 Brian Bach Mortensen/NORDUnet,

BoD and MD-VPN service status in GÉANT SA3 – Network Service Delivery LHCOPN and LHCONE joint meeting – Pasadena (US) 3-4 December 2013 Brian Bach Mortensen/NORDUnet,
Tunis, Tunisia, 28 April 2014 Business Values of Virtualization Mounir Ferjani, Senior Product Manager, Huawei Technologies 2.

Tunis, Tunisia, 28 April 2014 Business Values of Virtualization Mounir Ferjani, Senior Product Manager, Huawei Technologies 2.
The Future of GÉANT: The Future Internet is Present in Europe Vasilis Maglaris Professor of Electrical & Computer Engineering, NTUA Chairman, NREN Policy.

The Future of GÉANT: The Future Internet is Present in Europe Vasilis Maglaris Professor of Electrical & Computer Engineering, NTUA Chairman, NREN Policy.
Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.
1© Copyright 2015 EMC Corporation. All rights reserved. SDN INTELLIGENT NETWORKING IMPLICATIONS FOR END-TO-END INTERNETWORKING Simone Mangiante Senior.

1© Copyright 2015 EMC Corporation. All rights reserved. SDN INTELLIGENT NETWORKING IMPLICATIONS FOR END-TO-END INTERNETWORKING Simone Mangiante Senior.
Transport SDN: Key Drivers & Elements

Transport SDN: Key Drivers & Elements
Experiences with Deploying a Global IP/MPLS Network

Experiences with Deploying a Global IP/MPLS Network
ESnet On-demand Secure Circuits and Advance Reservation System (OSCARS) Chin Guok Network Engineering Group Thomas Ndousse Visit February 6 2008 Energy.

ESnet On-demand Secure Circuits and Advance Reservation System (OSCARS) Chin Guok Network Engineering Group Thomas Ndousse Visit February Energy.
Abstraction and Control of Transport Networks (ACTN) BoF

Abstraction and Control of Transport Networks (ACTN) BoF
Network performance measurements and cross-layer communication research opportunities on LEARN Deniz Gurkan, Charles Chambers, Tesfaye Kumbi, Maanasa Madiraju,

Network performance measurements and cross-layer communication research opportunities on LEARN Deniz Gurkan, Charles Chambers, Tesfaye Kumbi, Maanasa Madiraju,
Chapter 1: Hierarchical Network Design

Chapter 1: Hierarchical Network Design
Effectively and Securely Using the Cloud Computing Paradigm.

Effectively and Securely Using the Cloud Computing Paradigm.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 18 Slide 1 Software Reuse.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 18 Slide 1 Software Reuse.
1 Connect | Communicate | Collaborate Motivation When utilizing special-purpose networking you need to bring the network into place end-to-end GÉANT services.

1 Connect | Communicate | Collaborate Motivation When utilizing special-purpose networking you need to bring the network into place end-to-end GÉANT services.

Similar presentations

Ads by Google