How To Build A Lightpath Network For Multiple Lightpath Projects

Similar documents
Lightpath Planning and Monitoring

LHCONE Site Connections

Campus Network Best Practices: Core and Edge Networks

Vocia MS-1 Network Considerations for VoIP. Vocia MS-1 and Network Port Configuration. VoIP Network Switch. Control Network Switch

Troubleshooting Network Performance with Alpine

Internet Protocol: IP packet headers. vendredi 18 octobre 13

Enabling NAT and Routing in DGW v2.0 June 6, 2012

Document No. FO1101 Issue Date: Work Group: FibreOP Technical Team October 31, 2013 FINAL:

Disaster Recovery Design Ehab Ashary University of Colorado at Colorado Springs

A Link Load Balancing Solution for Multi-Homed Networks

Troubleshooting and Maintaining Cisco IP Networks Volume 1

Instructor Notes for Lab 3

Campus Network Best Practices: Core and Edge Networks

Chapter 4 Connecting to the Internet through an ISP

Chapter 1 Personal Computer Hardware hours

Ethernet OAM enabled OpenFlow Controller

How To Load balance traffic of Mail server hosted in the Internal network and redirect traffic over preferred Interface

Network Virtualization Network Admission Control Deployment Guide

Description: Objective: Upon completing this course, the learner will be able to meet these overall objectives:

Computer Networks I Laboratory Exercise 1

Application Description

Lab Diagramming External Traffic Flows

HP Networking BGP and MPLS technology training

How To Understand and Configure Your Network for IntraVUE

Internetworking and Internet-1. Global Addresses

CS 5480/6480: Computer Networks Spring 2012 Homework 4 Solutions Due by 1:25 PM on April 11 th 2012

Technical Support Information Belkin internal use only

RAP Installation - Updated

configure WAN load balancing

ETHERNET OAM MONITORING

Measurement Study on the Internet reachability. 3.1 Introduction. 3. Internet Backbone

Basic Network Configuration

What is VLAN Routing?

Network layer: Overview. Network layer functions IP Routing and forwarding

Router and Routing Basics

Approaches for DDoS an ISP Perspective.

IOS NAT Load Balancing with Optimized Edge Routing for Two Internet Connections

IP Networking. Overview. Networks Impact Daily Life. IP Networking - Part 1. How Networks Impact Daily Life. How Networks Impact Daily Life

The IP Transmission Process. V1.4: Geoff Bennett

CCNA R&S: Introduction to Networks. Chapter 9: Subnetting IP Networks

Configure WAN Load Balancing

Border Gateway Protocol (BGP)

Internet Firewall CSIS Packet Filtering. Internet Firewall. Examples. Spring 2011 CSIS net15 1. Routers can implement packet filtering

State of Texas. TEX-AN Next Generation. NNI Plan

Region 10 Videoconference Network (R10VN)

Essential Curriculum Computer Networking 1. PC Systems Fundamentals 35 hours teaching time

SSVP SIP School VoIP Professional Certification

ICS 351: Today's plan

Teldat Router. ARP Proxy

Exterior Gateway Protocols (BGP)

Using VDOMs to host two FortiOS instances on a single FortiGate unit

Network and Capacity Planning in SURFnet6

Cisco Network Switches Juniper Firewall Clusters

Implementation of Virtual Local Area Network using network simulator

Experiences with MPTCP in an intercontinental multipathed OpenFlow network

Device Interface IP Address Subnet Mask Default Gateway

IP Address Classes (Some are Obsolete) Computer Networking. Important Concepts. Subnetting Lecture 8 IP Addressing & Packets

estadium Project Lab 8: Wireless Mesh Network Setup with DD WRT

NETE-4635 Computer Network Analysis and Design. Designing a Network Topology. NETE Computer Network Analysis and Design Slide 1

VLSM Static routing. Computer networks. Seminar 5

Bandwidth-based load-balancing with failover. The easy way. We need more bandwidth.

S ITGuru Exercise (3: Building the MPLS BGP VPN) Spring 2006

AS/400e. TCP/IP routing and workload balancing

Datagram-based network layer: forwarding; routing. Additional function of VCbased network layer: call setup.

Networking TCP/IP routing and workload balancing

Lab Diagramming Intranet Traffic Flows

PART IV. Network Layer

Multi-Homing Dual WAN Firewall Router

NQA Technology White Paper

Firewall VPN Router. Quick Installation Guide M73-APO09-380

PowerLink Bandwidth Aggregation Redundant WAN Link and VPN Fail-Over Solutions

MPLS for ISPs PPPoE over VPLS. MPLS, VPLS, PPPoE

Question 1. [7 points] Consider the following scenario and assume host H s routing table is the one given below:

Configuring a customer owned router to function as a switch with Ultra TV

KENET NETWORK INFRASTUCTURE. KENNEDY ASEDA

Interconnecting IPv6 Domains Using Tunnels

Procedure: You can find the problem sheet on Drive D: of the lab PCs. 1. IP address for this host computer 2. Subnet mask 3. Default gateway address

SURF Feed Connection Guide

EECS 489 Winter 2010 Midterm Exam

VLANs. Application Note

Lab Developing ACLs to Implement Firewall Rule Sets

Computer Networks. Lecture 3: IP Protocol. Marcin Bieńkowski. Institute of Computer Science University of Wrocław

White Paper Copyright 2011 Nomadix, Inc. All Rights Reserved. Thursday, January 05, 2012

2. What is the maximum value of each octet in an IP address? A. 28 B. 255 C. 256 D. None of the above

Active measurements: networks. Prof. Anja Feldmann, Ph.D. Dr. Nikolaos Chatzis Georgios Smaragdakis, Ph.D.

LAB THREE STATIC ROUTING

Inter-domain Routing. Outline. Border Gateway Protocol

Stretched Active- Active Application Centric Infrastructure (ACI) Fabric

Lecture 02b Cloud Computing II

Border Gateway Protocol (BGP-4)

BGP. 1. Internet Routing

ITRI CCL. IP Routing Primer. Paul C. Huang, Ph.D. ITRI / CCL / N300. CCL/N300; Paul Huang 1999/6/2 1

The Internet and Its Uses

Chapter 3: IP Addressing and VLSM

Transcription:

Building a LAN to Support Multiple Lightpath Projects Ronald van der Pol <>

About SARA Computing and Networking services Houses and operates national supercomputer Huygens Houses and operates national cluster Lisa LightHouse (joint lab of SARA, UvA and SURFnet for optical networking experiments and demos) SURFnet's subcontractor for SURFnet6 NOC SURFnet's subcontractor for NetherLight NOC One of the co-location sites of the AMS-IX CERN LHC Tier-1 site LOFAR Tier-1 site

LHC OPN Tier-1 Site

LOFAR Tier-1 Site LOw Frequency ARray Radiotelescope Consists of Sensor Fields Data Storage @ SARA

IMAU Climate Model Rendering at SARA Visualization at IMAU Connected with a SURFnet6 1G lightpath

Traditional ISP Connection router router SURFnet SARA router router Layer 3 IP interconnect

Introduction of Lightpaths? router SURFnet6 Hybrid Network router router SARA? router?

Lightpath Challenges Interconnect sites at L2 or at L3? How to handle security? How to handle addressing? How to protect against configuration errors and accidents at other site?

L2 versus L3 L2 pros Cheap Ethernet switches L2 cons No IP ACLs Mixing of administrative domains One broadcast domain, one IP subnet L3 pros Well-known (we know how to do this between sites) Supports ACLs and firewall Easier fault resolution Ping, traceroute, router reachability L3 cons Routers (and L3 switches) usually more expensive

SARA's Requirements Keep services separated Access to one service does not mean access to another service, unless explicitly allowed No (accidental) connectivity between lightpaths via SARA No (accidental) Internet connectivity via SARA Solution must scale to multiple services and multiple lightpath peer sites Solution must support multiple 10G connections No big routing tables on the servers Only a default gateway Segmenting the routing tables e.g. No LHCOPN prefixes in global routing table

Problems Encountered in LHCOPN Only storage servers traffic allowed on the LHCOPN Other hosts and servers must reach CERN via Internet Traditional destination based routing does not work We needed to find a good, scalable solution CERN LHCOPN Internet SARA router SARA Data storage

SARA's Choices Interconnect at L3 L2 only for few very simple cases BGP routing BGP detects when peer is unreachable BGP needed when there are multiple paths Routing segmentation Put each lightpath project in its own virtual router Good way to keep projects and services separated

Virtual Routing Internet LHCOPN if1 if8 LHCOPN LHCOPN if2 if7 IMAU if3 if6 if5 Storage cluster if4 LOFAR Render cluster Global Table: if1, if4, if5 VR1 (LHCOPN): if6, if7, if8 VR2 (IMAU): if2 VR3 (LOFAR): if3

Virtual Router Solution Virtual routing is a scalable way to keep services and lightpath peers separated Problem with traditional destination based routing + ACLs: ACLs are difficult to maintain Not a scalable solution Configuration errors mean unwanted access Problem with policy based routing: Only 1 next hop, does not work with multiple links Next hop is specified as specific interface Does not use BGP, no route information exchange No link failure detection when switches in path

Problems Encountered Often little BGP knowledge at peer sites Many peer sites do not have a global AS Most routers have insufficient Virtual Routing capabilities We had to gain knowledge of virtual routing Detecting of link failures often difficult Link failures do not propagate through Ethernet switches (BGP session, 802.1ag, BFD,...)

Conclusions Supporting multiple lightpaths and multiple services is not a trivial task Virtual routing is a relatively simple way to handle the routing and separation requirements Routing requirements often result in the choice for BGP

Thank You Ronald van der Pol

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information