ENOS: a Network Opera/ng System for ESnet Testbed



Similar documents
Hybrid Circuit/Packet Networks with Dynamic Capacity Partitioning

Philosophy of Network Opera3ng Systems and Intent APIs

ESnet SDN Experiences. Roadmap to Operating SDN-based Networks Workshop July 14-16, 2015 Berkeley, CA C. Guok, B. Mah, I. Monga, E.

Deploying distributed network monitoring mesh

ViSION Status Update. Dan Savu Stefan Stancu. D. Savu - CERN openlab

Software Defined Networking for big-data science

Introduction to Software Defined Networking

Software Defined Networking for big-data science

Network Virtualization and Software-defined Networking. Chris Wright and Thomas Graf Red Hat June 14, 2013

Software-Defined Networks (SDN): Bridging the application-network divide

Network Virtualiza/on on Internet2. Eric Boyd Senior Director for Strategic Projects

Ethernet-based Software Defined Network (SDN)

Migra'ng AmLight from legacy to SDN: Challenges, Results and Next Steps

WAN Virtualization Looking beyond Point to Point Circuits

Bring your virtualized networking stack to the next level

Software Networking & The New IP. A Technical Perspective

Internet2 Network: Controlling a Slice of the Na6onal Network. Eric Boyd Senior Director of Strategic Projects

ONOS Open Network Operating System

Network Virtualization

Scaling IP Mul-cast on Datacenter Topologies. Xiaozhou Li Mike Freedman

How To Manage A Network From A Microsoft Lab

Ethernet-based Software Defined Network (SDN) Cloud Computing Research Center for Mobile Applications (CCMA), ITRI 雲 端 運 算 行 動 應 用 研 究 中 心

Tutorial: OpenFlow in GENI

SDN Building Blocks. Edward Balas Sept 17th, 2014

Exploring OpenDaylight

DREAMER and GN4-JRA2 on GTS

Extending SDN into the Transport Network. Nanog 59 Wayne Wauford Infinera

LISP for SDN and NFV. Vina Ermagan, Cisco Systems Sharon Barkai, ConteXtream Feb 4 th 2014

Software Defined Networking (SDN) OpenFlow and OpenStack. Vivek Dasgupta Principal Software Maintenance Engineer Red Hat

SDN/OpenFlow. Dean Pemberton Andy Linton

OpenDaylight: Introduction, Lithium and Beyond

SDN Overview. Southern Partnership in Advanced Networking John Hicks, November 3, 2015

OF 1.3 Testing and Challenges

How To Make A Vpc More Secure With A Cloud Network Overlay (Network) On A Vlan) On An Openstack Vlan On A Server On A Network On A 2D (Vlan) (Vpn) On Your Vlan

Cloud Computing, Software Defined Networking, Network Function Virtualization

Leveraging SDN and NFV in the WAN

TeraPaths: A QoS Collaborative Data Sharing Infrastructure for Petascale Computing Research

IO Visor: Programmable and Flexible Data Plane for Datacenter s I/O

How To Orchestrate The Clouddusing Network With Andn

OpenFlow and Onix. OpenFlow: Enabling Innovation in Campus Networks. The Problem. We also want. How to run experiments in campus networks?

SDN for Science Networks

Leveraging ONOS SDN Controller for SD-WAN Experiment

ANI Network Testbed Update

SOFTWARE-DEFINED NETWORKING AND OPENFLOW

P2P Service Trial Session Notes

Developing OpenDaylight Apps with MD-SAL. J. Medved, E. Warnicke, A. Tkacik. R. Varga Cisco Sample App: M. Rehak, Cisco February 04, 2014

Running produc>on and experimenta>on at AmLight SDN

FRESCO: Modular Composable Security Services for So;ware- Defined Networks

Why Operators Need Optical Transport SDN

SDN_CDN Documentation

SDN Applications in Today s Data Center

SOFTWARE-DEFINED NETWORKING AND OPENFLOW

SDN and NFV Open Source Initiatives. Systematic SDN and NFV Workshop Challenges, Opportunities and Potential Impact

Using SouthBound APIs to build an SDN Solution. Dan Mihai Dumitriu Midokura Feb 5 th, 2014

CERN Cloud Infrastructure. Cloud Networking

SDN/Virtualization and Cloud Computing

Programmable Networking with Open vswitch

Towards Smart and Intelligent SDN Controller

Virtualization, SDN and NFV

Agile VPN for Carrier/SP Network. ONOS- based SDN Controller for China Unicom MPLS L3VPN Service

Restorable Logical Topology using Cross-Layer Optimization

Software-Defined Networking Architecture Framework for Multi-Tenant Enterprise Cloud Environments

LHCONE Site Connections

Overview of SDN Terminology & Concepts

YANG User Interface (YANGUI) in OpenDaylight

Best Prac*ces for Deploying Oracle So6ware on Virtual Compute Appliance

SDN. Roadmap to Operating SDN-based Networks Workshop July 15, Kireeti Kompella CTO, JDI. Copyright 2014 Juniper Networks, Inc.

SOFTWARE DEFINED NETWORKING: INDUSTRY INVOLVEMENT

The Energy Sciences Network: Overview, Update, Impact

OpenDaylight and OpFlex. Scott Mann

configurability compares with typical SIEM & Log Management systems Able to install collectors on remote sites rather than pull all data

configurability compares with typical Asset Monitoring systems Able to install collectors on remote sites rather than pull all data

Perspec'ves on SDN. Roadmap to SDN Workshop, LBL

SDN IN TOMORROW'S DATA CENTER. Guido Appenzeller October, 2013

Qualifying SDN/OpenFlow Enabled Networks

SDN Architecture and Service Trend

Designing Virtual Network Security Architectures Dave Shackleford

Group-Based Policy for OpenStack

The Last Piece of the Puzzle From Legacy to SDN and NFV. Benjamin Then

BARE METAL SOFTWARE DEFINED NETWORKS, AND OPEN SOURCE. Rob Sherwood Big Switch Networks, CTO BANV, May 2014

基 於 SDN 與 可 程 式 化 硬 體 架 構 之 雲 端 網 路 系 統 交 換 器

SDN-NFV Open Source. Landscape, Scaling, Use-Cases Sharon Barkai Cofounder, ConteXtream. Santa Clara, CA USA April 2015

Internet2 ION Service Overview and Status. Tom Lehman (USC/ISI)

April 20 th 2011, Internet2 Spring Member Mee5ng Aaron Brown Internet2. Circuit Monitoring for DYNES

Sales Slide Midokura Enterprise MidoNet V1. July 2015 Fujitsu Limited

! Strategic!Plan! FY20143FY2023! ESnet! !!!! March!1,!2013!

SDN AND SECURITY: Why Take Over the Hosts When You Can Take Over the Network

Outline. Why Neutron? What is Neutron? API Abstractions Plugin Architecture

Scalable Network Monitoring with SDN-Based Ethernet Fabrics

Software Defined Network (SDN)

SC14 Remote I/O Pipeline Processing Demonstrtion

OS/Run'me and Execu'on Time Produc'vity

Open Source Tools & Platforms

OpenDaylight and the Past, Present and Future of Open Source Networking

Automated Overlay Virtual Networking Manager for OpenFlow-based International SDN-Cloud Testbed

智 慧 應 用 服 務 的 資 料 中 心 與 底 層 網 路 架 構

Underneath OpenStack Quantum: Software Defined Networking with Open vswitch

Unifying the Programmability of Cloud and Carrier Infrastructure

VIRTUALIZED SERVICES PLATFORM Software Defined Networking for enterprises and service providers

Defining SDN. Overview of SDN Terminology & Concepts. Presented by: Shangxin Du, Cisco TAC Panelist: Pix Xu Jan 2014

Transcription:

ENOS: a Network Opera/ng System for ESnet Testbed Eric Pouyoul (lomax@es.net) Technology Exchange Cleveland, Ohio, September 2015

Is ESnet really developing Yet Another Network Opera:ng System (YANOS)? Well, yes, sorry, but we had to! Focus on: Security Resource sharing (mul/- applica/ons) design panerns ODL, ONOS, other were not available at the /me. ESnet traffic is not typical. Not a controller (does not implement one) Will leverage any WAN, produc/on quality controller Co- design with hardware and network 2

ENOS Architecture REST API, Portal Layer 2 services MulEPoint L2 VPN Layer 3 SDX Netshell security, core services, API, SSHD Network Services Drivers Topology, NSI, OSCARS, Stats, Tests perfsonar, SNMP, Sampling Controller Drivers ODL, ONOS, 3 Database Immediately or eventually consistent VM Driver Linux containers (libvirt)

Netshell Design ENOS Services ENOS Modules Netshell Bundles, Python Karaf OSGi Java Virtual Machine 4

ENOS and SoKware Technologies Java Virtual Machine (JVM) for a produc/on- ready environment ENOS security leverages Java Security Manager Performance Python for rapid so^ware development Useful for experiments, quick prototyping The natural language of ENOS ENOS integrates Jython, a Python 2.7 interpreter running in the JVM. OSGi, Karaf for module, applica/on management. OpenDaylight for controlling SDN devices 5

>>> from net.es.netshell.api import TopologyProvider >>> graph = topo.getgraph(topologyprovider.weighttype.trafficengineering) >>> lbl = topo.getnode('lbl-mr2@es.net') >>> amst= topo.getnode('amst-cr5@es.net') >>> from org.jgrapht.alg import DijkstraShortestPath >>> path = DijkstraShortestPath.findPathBetween(graph, lbl, amst) >>> for link in path:... node = topo.getnodebylink(link.getid()... print "Node= " + node.getid() + "\tlinkid= " + link.getid() Node= urn:ogf:network:es.net:sunn-cr5 linkid= urn:ogf:network:es.net:sunn-cr5:to_lbl-mr2_ip-a:0 Node= urn:ogf:network:es.net:sacr-cr5 linkid= urn:ogf:network:es.net:sacr-cr5:to_sunn-cr5_ip-a:0 Node= urn:ogf:network:es.net:denv-cr5 linkid= urn:ogf:network:es.net:denv-cr5:to_sacr-cr5_ip-a:0 Node= urn:ogf:network:es.net:kans-cr5 linkid= urn:ogf:network:es.net:kans-cr5:to_denv-cr5_ip-a:0 Node= urn:ogf:network:es.net:chic-cr5 linkid= urn:ogf:network:es.net:chic-cr5:to_kans-cr5_ip-a:0 Node= urn:ogf:network:es.net:wash-cr5 linkid= urn:ogf:network:es.net:wash-cr5:to_chic-cr5_ip-a:0 Node= urn:ogf:network:es.net:aofa-cr5 linkid= urn:ogf:network:es.net:aofa-cr5:to_wash-cr5_ip-a:0 Node= urn:ogf:network:es.net:lond-cr5 linkid= urn:ogf:network:es.net:lond-cr5:to_aofa-cr5_ip-a:0 Node= urn:ogf:network:es.net:amst-cr5 linkid= urn:ogf:network:es.net:amst-cr5:to_lond-cr5_ip-a:0 6

Drivers Implements / uses Netshell Generic API: Topology, Monitoring, Provides an interface to services that are not implemented in ENOS, such as the OpenFlow controller Some core func/onali/es (DB, messaging) are provided by third part so^ware requiring a driver. Applica/on Generic API Third Party So^ware or Service Driver Netshell security, core services, API 7

ENOS Mul:point VPN Service Func:ons ENOS DHCP Virtual Machine Management Layer 2 Broadcast MAC Learning Virtualiza/on / Isola/on Layer 2 Provisioning Path Computa/on Open Daylight Driver OSCARS Driver ENOS Topology Service 8

ESnet PE Router (2+)x10GE ESnet SDN Testbed (n)x10ge Testbed Host Planned SDN Testbed node locations Planned SDN Testbed connectivity overlay (using OSCARS circuits) PNWG PNNL BOIS ANL FNAL STAR BOST AMST SACR DENV DENV KANS STAR CHIC AOFA BNL AMST LBL AOFA NEWY LOND LBL LLNL WASH CERN NERSC SUNN ALBQ NASH ORNL WASH CERN LANL SLAC ATLA SAND ELPA HOUS ATLA

ESnet SDN Testbed Hardware: Corsa Technology DP6440 4 x 100G CFP2 Ports 24x 10G SFP+ Ports DP6430 2 x 100G CFP2 Ports 24x 10G SFP+ Ports 100G 10G DP6420 48 x 10G SFP+ Ports 4 x 40G QSFP+ Ports Open vswitch + DP6410 24 x 10G SFP+ Ports OpenFlow 1.3 / 1.4 / 1.5+ FPGA- based SDN switch, with OpenFlow controller interface Highly scalable both in number of flows and speed Doing common ac/ons (defined by pipeline) very fast No broadcast, subset of OpenFlow matches and ac/ons.

ESnet SDN Testbed Node Physical View ESnet SDN Testbed Node Logical View ESnet PE Router ESnet PE Router (2+)x10GE (2+)x10GE (n)x10ge (n)x10ge Testbed Host Services VM

ESnet SDN Testbed Node Logical View Services VM So^ware switch and Services VM paired with every hardware switch. Most flows only pass through hardware switch (green) Flows requiring special handling go through so^ware switch (blue), possibly to Services VM (red). Hardware switch provides performance, stability So^ware switch and service VM provide flexibility, without compromising reliability

Design PaUerns at work: Traffic Mirroring. ANL OVS Flow Private OSCARS layer 2 circuit LBL Flow STAR SDN POP Private OSCARS layer 2 circuit CERN Private OSCARS layer2 circuit LBL SDN POP Shared OSCARS layer 2 circuits CERN SDN POP VM OVS OVS 13

ENOS Roadmap Year 1 (2013-14) Ini/ally only a proof of concept Focus Future ScienceDMZ Year 2 (2014-15) LBL funding (LDRD) Working prototype Mul/ple point VPN for high performance flows Year 3 (2015-2016) Deploy semi- produc/on mul/point VPN with traffic engineering. Support research projects: security, intent based networking, Open Source by Spring 2016 14

Lessons Learned and Summary Java + Python + SSHD is very powerful and yet simple combina/on. Aggrega/ng, grooming and normalizing data such as topology simplifies greatly network aware applica/ons. OSGI/Karaf allows us to painlessly change ODL version, ONOS, other OSGi based controller/applica/ons. Security is not trivial, especially when using third party so^ware: we needed to turn off security in order to use ODL. Will be open sourced very soon. A network operaeng system does really look like a computer operaeng system. Perhaps Linux itself could be the execueon environment for network policies. 15

Thank You / Ques:ons? Eric Pouyoul: lomax@es.net / epouyoul@lbl.gov 16

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information