GN3+ SA3T3 / Multi-Domain-VPN service: Collaboration of NREN s NOC



Similar documents
MPLS multi-domain services MD-VPN service

Multi-Domain Virtual Private Network service a seamless infrastructure for NRENs, GEANT and NORDUnet

GÉANT MD-VPN Service Description High performance IP-VPN connectivity to support European Research and Education

GÉANT for HEAnet clients

Multi-domain VPNs. A practical approach to enable end-to-end services over multiple domains

Introduction to perfsonar

Service Quality Management for multidomain network services. Pavle Vuletić, AMRES edupert videoconference, 20 July 2015

GN3plus JRA3 T1 Attribute and Group management in the AAI environment

Trial of the Infinera PXM. Guy Roberts, Mian Usman

perfsonar MDM The multi-domain monitoring service for the GÉANT Service Area connect communicate collaborate

Federation of trouble ticketing systems

Toward the Clouds, Together!

Agenda. NRENs, GARR and GEANT in a nutshell SDN Activities Conclusion. Mauro Campanella Internet Festival, Pisa 9 Oct

Ethernet over MPLS tests

perfsonar MDM updates for LHCONE: VRF monitoring, updated web UI, VM images

Introduction Inter-AS L3VPN

Network performance monitoring Insight into perfsonar

Carrier Class Transport Network Technologies: Summary of Initial Research

SA7 IaaS procurement

SSVVP SIP School VVoIP Professional Certification

WHITE PAPER. Addressing Inter Provider Connections with MPLS-ICI CONTENTS: Introduction. IP/MPLS Forum White Paper. January Introduction...

VOPaaS Virtual Organisation Platform as a Service

A BRAINSTORMING ON SECURITY FIRE DRILLS

Rohde & Schwarz R&S SITLine ETH VLAN Encryption Device Functionality & Performance Tests

ATRIUM: A testbed of terabit IP routers running MPLS over DWDM

The GÉANT Network & GN3

Driving Ethernet Deeper Ethernet Business Services over DOCSIS COX New Orleans (NOLA) Case Study

Application Description

Networking 4 Voice and Video over IP (VVoIP)

GÉANT2. Otto Kreiter Network Engineering & Planning, DANTE

Addressing Inter Provider Connections With MPLS-ICI

MPLS VPN Security BRKSEC-2145

SEC , Cisco Systems, Inc. All rights reserved.

Instructions for Access to Summary Traffic Data by GÉANT Partners and other Organisations

QoS Unterstützung in der neuen Generation von Weitverkehrsnetzen und erste Erfahrungen im europaweiten Einsatz

Deliverable D8.4 (DS4.3.1): End-to-end Management Catalogue of Business Processes

CloudNet: Enterprise. AT&T Labs Research, Joint work with: Timothy Wood, Jacobus van der Merwe, and Prashant Shenoy

CLOUD POWER. NREN collaboration in STF

Strategic approach to cloud computing deployment

Expert Reference Series of White Papers. Cisco Service Provider Next Generation Networks

DD2491 p MPLS/BGP VPNs. Olof Hagsand KTH CSC

Implementing and Administering Security in a Microsoft Windows Server 2003 Network

Ancero Virtual Private Network (AVPN) Service Guide

Level: 3 Credit value: 9 GLH: 80. QCF unit reference R/507/8351. This unit has 6 learning outcomes.

MPLS VPN over mgre. Finding Feature Information. Prerequisites for MPLS VPN over mgre

JUNIPER NETWORKS - SERVICE & SUPPORT OVERVIEW CSS CALA

Firewall-on-Demand. GRNET s approach to advanced network security services management via bgp flow-spec and NETCONF. Leonidas Poulopoulos

How To Protect Gante From Attack On A Network With A Network Security System

Firewall on Demand Multidomain

GRNet. Advanced Network Services Tool

Ancero Managed Internet Service (MIS) & Private Network Transport (PNT) Service Guide

DREAMER and GN4-JRA2 on GTS

BUY ONLINE AT:

Timeline for MPLS Deployment

Corporate Network Services of Tomorrow Business-Aware VPNs

Gaining Customer Insight through Big Data Analytics

Design and Implementation of Service Level Agreements at HEAnet

MCSE Objectives. Exam : TS:Exchange Server 2007, Configuring

SSVP SIP School VoIP Professional Certification

Ethernet OAM. Victor Olifer (JANET/GEANT JRA1 Task 1) JRA1/TERENA workshop, Copenhagen, 20 November connect communicate collaborate

LHCOPN and LHCONE an introduction

AMRES NOC Bojan Jakovljević. 8 th TF-NOC meeting, Athens 2013.

MPLS Layer 2 VPNs Functional and Performance Testing Sample Test Plans

GN3+ JRA1 Network Architectures for Horizon 2020

Fireware Essentials Exam Study Guide

HughesNet Broadband VPN End-to-End Security Using the Cisco 87x

LANCOM Software Version 6.00 January , LANCOM Systems GmbH

Expert Reference Series of White Papers. Cisco Service Provider Next Generation Networks

GÉANT: Delivering Global Real-Time Video Communication Services

McAfee Next Generation Firewall (NGFW) Administration Course

WHITEPAPER. Bringing MPLS to Data Center Fabrics with Labeled BGP

MPLS VPN Route Target Rewrite

Carrier/WAN SDN. SDN Optimized MPLS Demo

SIP Trunking with Microsoft Office Communication Server 2007 R2

How To Load balance traffic of Mail server hosted in the Internal network and redirect traffic over preferred Interface

Transcription:

GN3+ SA3T3 / Multi-Domain-VPN service: Collaboration of NREN s NOC 10 th TF NOC meeting (Cambridge) Friday, 21 March 2014 Xavier Jeannin / RENATER, SA3T3 Task Leader Miguel Angel Sotos / RedIRIS Bojan Jakovljevic / AMRES

Agenda What is MDVPN? Status of MD-VPN deployment Role of the NOCs MD-VPN operation model VPN Provisioning Monitoring Troubleshooting Conclusions on MDVPN operation 2

What is MD-VPN? 1/3 A joint service provided by GEANT and NRENs Extending the original IP cooperation between GEANT, NRENs and regional networks to deliver new services Share the same cooperation model used for traditional IP traffic exchange NREN NOC collaboration required http://keenetrial.com/ MD-VPN creates a baseline transport infrastructure for a bundle of data transmission services Umbrella for P2P or multipoint transmission Multi-domain networking Layer3 or Layer2 VPNs spanned over several domains http://www.broadband4europe.com/ 3

What is MD-VPN? 2/3 VPN1 VPN2 RR ABR SSP ABR RR VPN1 VPN2 Configure only at edge VPN3 NREN A ABR SSP SSP ABR NREN B VPN1 VPN multiplexing - Configure only once SSP GEANT VPN proxy SSP NREN E (non MPLS) VPN2 VPN1 ABR VPN2 VPN3 RR NREN C ABR SSP ABR RR VPN3 Regional Network VPN2 VPN provider VPN provider and VPN transport provider VPN transport provider 4

Added value for end-users Safe infrastructure Dedicated virtual network No firewall needed No additional transmission delay (DPI) High performance Safe Inter-university Research and Educational Network (S.I.R.E.N) Site A Site B Site C 5

MD-VPN status Deployment phase Multi-domain operation validation (4th quarter 2013 end of 1st quarter 2014) Technical Pilot Phase Setting-up GEANT pilot (1st quarter 2014) Pilot generalization phase (2nd and 3rd quarter 2014) Adding MD-VPN service to GEANT portfolio end of GN3 plus A first scientist project XiFi XIFI is a project of the European Public-Private-Partnership on Future Internet 6

MD-VPN status the 20th Febr. 2014 Current pilot running on production infrastructure NREN currently connected NREN nearly connected DeiC SUnet FUnet Active XiFi L3VPN Future XiFi L3VPN Litnet XiFi TSSG HEAnet NORDUnet PSNC VPN Route reflector FCCN GEANT CESNET XiFi Sevilla RedIRIS XiFi Malaga RENATER XiFi Lannion GARR XiFi Trento DFN AMRES XiFi Berlin 7

MD-VPN operation model VPN Provisioning Monitoring Day-to-day monitoring Statistics Monitoring Troubleshooting Ensure OLA commitment are achieved 8

MDVPN Provisioning Process workflow * DANTE can play the role of the Initiator NREN Authoritative End user 2 DANTE I want L3VPN ASTRO 1 List creation 2 3 * Initiator NREN 6 6 MD-VPN database 4 Service Order: L3VPN ASTRO RT 2200:001 Central information hosted within DANTE: VPN Name VPN type RT, RENs involved used Technical contact list 5 Service Order validate or not via VPN-ASTROproviders@MDVPN... NREN Email List VPN-ASTROproviders@MDV PN.dante.net 2 NREN + Users Email List VPN-ASTROoperation@MDVPN.d ante.net Feedbacks to the user requester VPN implemenation announced via VPN- ASTROoperation@MDVPN... 6 6 6 NREN NREN NREN Involved NREN End users NREN : Checks with their own users Implements the VPN 9

What to monitor? Monitoring is decentralized: s (DANTE and NRENs) SSPs (DANTE and NRENs) VPN Route Reflector (VR) (DANTE) VPN-Proxy (DANTE) Peerings to be monitored 10

MD-VPN monitoring plan for NG3plus SSP monitored by GEANT availability MD-VPN Looking Glass Prospective:, User VPN monitoring NREN collaboration on monitoring a L3VN is deployed on all s and ASBRs A loopback is put into this L3VPN and pinged in order to check if ASBR or is alive and the service up 11

MD-VPN troubleshooting 1. DANTE will take care of its own MD-VPN features VPN transport service (Carrier of Carrier) VPN Route Reflector VPN Proxy 2. Escalation process will be the same process as for IP service The MDSD coordinates the troubleshooting NRENs NRENs appeals to DANTE if they cannot fix the pb NREN coordinates the troubleshooting of their Regional Network Regional Networks appeals to its NRENs if they cannot fix the pb 12

support to NRENs: coordination task Key points Information related to the VPN VPN database (NREN involved in the VPN, Route Target, ) Information channel Between network providers Between network provider and users Make available email list tools that allow NREN to set-up their VPN list VPN-ASTRO-providers@dante.net VPN-ASTRO-operation@dante.net Feedback to the end users 13

Conclusions on MDVPN operation Next step: Database model and Operation cookbook Collaboration around the operational model Dissemination toward NREN s NOC Prospective Improve MDVPN operation Monitoring Advanced MDVPN 14

www.geant.net www.twitter.com/geantnews www.facebook.com/geantnetwork www.youtube.com/geanttv 15

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information