gn3 sa3t3 multi domain vpn service collaboration of nren
play

GN3+ SA3T3 / Multi-Domain-VPN service: Collaboration of NRENs NOC 9 - PowerPoint PPT Presentation

Jan 30, 2024 •41 likes •171 views

GN3+ SA3T3 / Multi-Domain-VPN service: Collaboration of NRENs NOC 9 th TF NOC meeting (Prague) Thursday, 14 November 2013 Xavier Jeannin / RENATER, SA3T3 Task Leader Miguel Angel Sotos / RedIRIS Bojan Jakovljevic / AMRES Agenda MDVPN a

  1. GN3+ SA3T3 / Multi-Domain-VPN service: Collaboration of NREN’s NOC 9 th TF NOC meeting (Prague) – Thursday, 14 November 2013 Xavier Jeannin / RENATER, SA3T3 Task Leader Miguel Angel Sotos / RedIRIS Bojan Jakovljevic / AMRES

  2. Agenda MDVPN a seamless infrastructure for delivering VPN services to end users Role of the NOCs MDVPN service operation monitoring MDVPN deployment roadmap and footprint Conclusions on MDVPN operation 2 Connect | Communicate | Collaborate

  3. MDVPN: seamless infrastructure for delivering VPN services to end users MDVPN objective Deliver multi-domain VPN as easily and as quickly as you do in your own domain SSP = Service Stitching Point SDP = Service Demarcation Point VPN provider and VPN provider VPN transit provider VPN transit provider VPN transport provider 3 Connect | Communicate | Collaborate

  4. MDVPN: seamless infrastructure for delivering VPN services to end users • A joint service delivered by GEANT-NRENs GEANT provides VPN transport service • • NRENs subscribe once to the VPN transport service then get as many ImaginLab ImaginLab ImaginLab P2P L3VPN P2P L2VPN L2VPN as you want VPNs. SDP SDP SDP ImaginLab L3VPN PE SDP PE VPN proxy ABR RR ABR SSP DFN PE RR  Only configuration at edge is required RENATER ImaginLab ABR PE ABR L3VPN SSP SDP SSP PE PE SSP PE SSP ABR VPN Other Partners PE proxy RR PE PE SDP GEANT Regional PE Network PE ImaginLab PE P2P L2VPN ImaginLab PE SSP P2P L2VPN VPN SDP SDP PE proxy PE SSP PE ImaginLab • MDVPN service is an ’umbrella’: PE ABR L3VPN NORDUnet RR FUnet PE PE  L3VPN, P2P-L2VPN , MP-L2VPN (VPLS) VPN provider and VPN provider VPN transit provider VPN transit provider VPN transport provider 4 Connect | Communicate | Collaborate

  5. One Use case: XiFi project https://www.fi-xifi.eu/about-xifi/what-is-xifi.html XIFI is a project of the European Public-Private-Partnership on Future Internet 5 Connect | Communicate | Collaborate

  6. MDVPN a efficient solution … A set of services useful for end users Cover a wide scope of user needs: from the long-term infrastructure with intensive network usage to quick point-to-point for a conference demonstration Scientist DMZ concept – Cost Reduction for international collaboration at site level VPN is deployed much more faster Based on MPLS and BGP standard Easy to configure It's flexible and quick to deploy No investment, no Cost in terms of CAPEX CAPEX saving thanks VPN multiplexing (no dedicate interface, ….) OPEX cost reduction for NREN and DANTE A service that you can not find in commercial ISP offer/portfolio because multi-domain 6 Connect | Communicate | Collaborate

  7. Role of the NOCs Provision the VPN on end-user requests Provisioning process Support end-users Communication with partners DANTE, NRENs, Regional Net… Provide efficient communication channel VPN-ASTRO- providers@ … VPN-ASTRO- operation@ … Ensure the day-to-day working monitor the service Troubleshooting Provide statistics monitoring to end-users and to partners Ensure OLA commitment are achieved 7 Connect | Communicate | Collaborate

  8. What to monitor Underlying principle behind this Multi-Domain VPN technology The LSP is extended from a PE up to the remote PE in another domain Monitoring is decentralized: monitor SDPs and SSPs state Labeled unicast BGP peering Multi-hop BGP VPNv4 peering Peerings to be monitored 8 Connect | Communicate | Collaborate

  9. Day-to-day monitoring Objective: detect problems that may affect the service level specification. VPN1 PE VPN2 SDP VPN1 SDP ABR PE RR VPN2 SSP PE SDP ABR RR 1. Availability of each PE ABR NREN B NREN A PE VPN1 SSP ABR SDP A specific L3 VPN instance SDP VPN3 PE PE SSP ( ‘ ping_VPN ’ instance) will be setup on PE SSP NREN E VPN proxy PE (non MPLS) PE all PEs for diagnostic purposes SDP GEANT PE PE VPN2 SSP A central tool (kind of smokeping) to ABR VPN1 check the availability of the PE through Regional SDP PE NREN C Network RR VPN2 RR the ‘ ping_VPN ’. ABR PE ABR SSP PE PE SDP SDP VPN3 SDP VPN2 VPN3 2. A Looking Glass service for the VPN Reflector will help to troubleshoot the VPNs signalling (route announcement and reception). 9 Connect | Communicate | Collaborate

  10. Statistics Monitoring The VPN transport provider (GÉANT) is not able to distinguish the different VPNs . At GÉANT level, only SSP availability and usage (throughput statistics) will be provided. The traffic carried by a particular VPN instance can be monitored, at least at interface (SDP) level. It is up to the NREN to provide statistics on their SDP NRENs and GÉANT cannot provide a general view of VPN usage, so it will be on the responsibility of end users to manage this. The list of the different statistics that should be collected at SSP level and at SDP level is not totally specified. 10 Connect | Communicate | Collaborate

  11. SA3T3: MDVPN work status Prove of concept demonstrated on SAT3 testbed Pioneer, DFN, NORDunet, RENATER, AMRES, LITnet, FCCN, FUnet … NREN involved into MDVPN Project Current state  Deployment phase Multi-domain operation validation 1. ( 4th quarter 2013 – end of 1st quarter 2014 ) Technical Pilot Phase 2. a. Setting-up GEANT pilot (1st quarter 2014) b. Pilot generalization phase (2nd and 3rd quarter 2014) MDVPN service officially added to 3. GEANT portfolio 11 Connect | Communicate | Collaborate

  12. Conclusions on MDVPN operation Service description: https://intranet.geant.net/SA3/Shared%20Documents/Deliverables/D7.1_DS%203%2 03%201-MDVPN-service-architecture.pdf Operation is a key point for the deployment of MDVPN Lake of coordination could endanger the rolling-out process of MDVPN Crucial points Dissemination toward NREN’s NOC Coordination between DANTE, NRENs, Regional Network (communication channel) NOC training – Technical cookbook / configuration for different stuff vendors – Operational cookbook Would it be possible to collaborate on this MDVPN operation topic? Improve and implement an innovative operational model – Reuse but new points (incorporation of regional network ….) Dissemination toward NREN’s NOC 12 Connect | Communicate | Collaborate

  13. Connect | Communicate | Collaborate www.geant.net www.twitter.com/GEANTnews | www.facebook.com/GEANTnetwork | www.youtube.com/GEANTtv 13 Connect | Communicate | Collaborate

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

GN3+ SA3T3 / Multi-Domain-VPN service: Collaboration of NRENs NOC 10 th TF NOC meeting

GN3+ SA3T3 / Multi-Domain-VPN service: Collaboration of NRENs NOC 10 th TF NOC meeting

GN3+ SA3T3 / Multi-Domain-VPN service: Collaboration of NRENs NOC 10 th TF NOC meeting (Cambridge) Friday, 21 March 2014 Xavier Jeannin / RENATER, SA3T3 Task Leader Miguel Angel Sotos / RedIRIS Bojan Jakovljevic / AMRES Agenda What is

517 views • 15 slides
GN3Plus SA3T3 - Multi Domain VPN - technical architecture 2nd TERENA Network Architects Workshop

GN3Plus SA3T3 - Multi Domain VPN - technical architecture 2nd TERENA Network Architects Workshop

GN3Plus SA3T3 - Multi Domain VPN - technical architecture 2nd TERENA Network Architects Workshop (Prague) 14 th Nov. 2013 Xavier Jeannin / RENATER, SA3T3 Task Leader Tomasz Szewczyk / PSNC, SA3T3 Deputy Outline What is Multi-domain VPN

276 views • 14 slides
Multi-Domain VPN service, a seamless infrastructure for Regional Network, NRENs and GEANT JRES

Multi-Domain VPN service, a seamless infrastructure for Regional Network, NRENs and GEANT JRES

Multi-Domain VPN service, a seamless infrastructure for Regional Network, NRENs and GEANT JRES 2013 (Montpellier) Thursday, 12 december 2013 Xavier Jeannin - RENATER, GN3plus, SA3T3 Task Leader Alain Bidaud - Responsable Technique du CRIHAN

398 views • 18 slides
CLOUD POWER NREN collaboration on service delivery and adoption in GANT GN3plus SA7 TF-MSP

CLOUD POWER NREN collaboration on service delivery and adoption in GANT GN3plus SA7 TF-MSP

CLOUD POWER NREN collaboration on service delivery and adoption in GANT GN3plus SA7 TF-MSP March 18, Amsterdam Collaborate, to enable and facilitate our community to use online services on a large scale, with the right conditions

840 views • 66 slides
Collaboration without Borders: The NREN Telepresence Community Yves Poppe Dir. Bus. Dev. &

Collaboration without Borders: The NREN Telepresence Community Yves Poppe Dir. Bus. Dev. &

Collaboration without Borders: The NREN Telepresence Community Yves Poppe Dir. Bus. Dev. & Strategy IP APAN Hanoi, august 2010 Collaboration session 1 Tata Group Overview 140-year old largest private sector group $62.5 billion in

463 views • 18 slides
Supporting Collaboration Niels van Dijk Technical Product Manager SURFnet: the Dutch NREN

Supporting Collaboration Niels van Dijk Technical Product Manager SURFnet: the Dutch NREN

Supporting Collaboration Niels van Dijk Technical Product Manager SURFnet: the Dutch NREN SURFnet is the Dutch National Research & Education Network (NREN) Services, innovation, knowledge Not for profit Task organisation of

710 views • 28 slides
NREN Service Services s and and Support Support for for Schools Schools NREN Tomi Dolenc

NREN Service Services s and and Support Support for for Schools Schools NREN Tomi Dolenc

Akademska in raziskovalna mrea Slovenije NREN Service Services s and and Support Support for for Schools Schools NREN Tomi Dolenc Academic and Research Network of Slovenia tomi.dolenc@arnes.si Outline Outline Akademska in

628 views • 18 slides
Multi-domain resso urces and service operation (GN3-JRA ti (GN3 JRA A2/SA2 A2/SA2 update) d

Multi-domain resso urces and service operation (GN3-JRA ti (GN3 JRA A2/SA2 A2/SA2 update) d

Multi-domain resso urces and service operation (GN3-JRA ti (GN3 JRA A2/SA2 A2/SA2 update) d t ) Tangui Coulouarn, Forsknings net/UNI-C 3rd E2E Workshop on Applicat tions and Services 29-30 November 2010, Prague connect communicate

509 views • 22 slides
The Domain Name Service, Etc. The Domain Name Service, Etc. Jeff Chase Duke University,

The Domain Name Service, Etc. The Domain Name Service, Etc. Jeff Chase Duke University,

The Domain Name Service, Etc. The Domain Name Service, Etc. Jeff Chase Duke University, Department of Computer Science CPS 212: Distributed Information Systems Today Today 1. Domain Name Service (DNS) illustrates: issues and structure

396 views • 22 slides
Weaving the Thread of Service Providers: Collaboration in Multi-disciplinary Settings Through

Weaving the Thread of Service Providers: Collaboration in Multi-disciplinary Settings Through

Weaving the Thread of Service Providers: Collaboration in Multi-disciplinary Settings Through Restorative Practices Marie Palumbo-Hayes, LICSW Vice President of Community Services Family Service of Rhode Island Shannon Cassidy, LICSW

482 views • 26 slides
Enhancing and connecting repositories in Africa NREN- library collaboration Omo Oaiya (WACREN),

Enhancing and connecting repositories in Africa NREN- library collaboration Omo Oaiya (WACREN),

Enhancing and connecting repositories in Africa NREN- library collaboration Omo Oaiya (WACREN), Iryna Kuchma (EIFL), Kathleen Shearer (COAR) What is LIBSENSE? Building capacity and services for Open Science in Africa Africa is a large and

198 views • 17 slides
Service Quality Management for multi- domain network services Pavle Vuleti , AMRES eduPERT

Service Quality Management for multi- domain network services Pavle Vuleti , AMRES eduPERT

Service Quality Management for multi- domain network services Pavle Vuleti , AMRES eduPERT videoconference, 20 July 2015 What is Service Quality Management? Resource Performance Management (RPM) provides insight into the network and

789 views • 35 slides
Building NREN service for a WireFree world Maurice van den Akker Team Manager WireFree SURFnet

Building NREN service for a WireFree world Maurice van den Akker Team Manager WireFree SURFnet

Building NREN service for a WireFree world Maurice van den Akker Team Manager WireFree SURFnet Todays items Excellent WireFree: the new goal for NRENs Building a Wi-Fi/4G/eduroam service together with telcos: MoLAN

408 views • 18 slides
Multi-Site Vs. Domain A Commerce Case Study May 7, 2019 Page 1 | Multi-Site Vs Domain: A

Multi-Site Vs. Domain A Commerce Case Study May 7, 2019 Page 1 | Multi-Site Vs Domain: A

Multi-Site Vs. Domain A Commerce Case Study May 7, 2019 Page 1 | Multi-Site Vs Domain: A Commerce Case Study John E. Picozzi Senior Drupal Architect Drupal Providence 401-228-7660 oomphinc.com 72 Clifford Street, oomph.is/jpicozzi

585 views • 29 slides
Dialogues CS294S/W Project Pitch Multi-Domain Dialogues Multiple domains in the same

Dialogues CS294S/W Project Pitch Multi-Domain Dialogues Multiple domains in the same

Multi-domain Transactional Dialogues CS294S/W Project Pitch Multi-Domain Dialogues Multiple domains in the same conversation (not just one after the other) Switching from one domain to the other, and back Passing data from one

610 views • 6 slides
DIVA: Domain Invariant Variational Autoencoders In collaboration with Jakub Tomczak, Christos

DIVA: Domain Invariant Variational Autoencoders In collaboration with Jakub Tomczak, Christos

DIVA: Domain Invariant Variational Autoencoders In collaboration with Jakub Tomczak, Christos Louizos and Max Welling Why do we care about domain generalization/invariance? Domain shift in medical imaging Patient 1 (Rajaraman et al., 2018)

366 views • 34 slides
Theoretical Corner: The Non-Interference Property Marwan Burelle marwan.burelle@lse.epita.fr

Theoretical Corner: The Non-Interference Property Marwan Burelle marwan.burelle@lse.epita.fr

Theoretical Corner: The Non-Interference Property Marwan Burelle marwan.burelle@lse.epita.fr http://wiki-prog.infoprepa.epita.fr Outline Introduction 1 2 Theory And Security Models And Policies Non-Interference 3 Flow Analysis

819 views • 66 slides
Introduction of HIAF project (High-Intensity Heavy Ion Accelerator Facility-HIAF) Jiancheng Yang

Introduction of HIAF project (High-Intensity Heavy Ion Accelerator Facility-HIAF) Jiancheng Yang

Introduction of HIAF project (High-Intensity Heavy Ion Accelerator Facility-HIAF) Jiancheng Yang HIAF general design group Institute of Modern Physics , Chinese Academy of Sciences The 5th Workshop on Hadron Physics in China and Opportunities

702 views • 43 slides
Building a large scale CDN with Apache Trafficserver Jan

Building a large scale CDN with Apache Trafficserver Jan

Building a large scale CDN with Apache Trafficserver Jan van Doorn jan_vandoorn@cable.comcast.com About me Engineer at Comcast Cable NaBonal

428 views • 30 slides
Video Delivery in Hybrid Network draft-huang-dispatch-hybrid-video-delivery-00 ietf99@Prague

Video Delivery in Hybrid Network draft-huang-dispatch-hybrid-video-delivery-00 ietf99@Prague

Video Delivery in Hybrid Network draft-huang-dispatch-hybrid-video-delivery-00 ietf99@Prague Multiplatform Distribution for Video Some use cases for video distribution in multiplatform environment Non IP based , e.g, cable/satellite IP fixed

447 views • 6 slides
CS 179i: Project in Computer Science (Networks) Jiasi Chen Lectures: 3:10-4pm Watkins 2240 TA:

CS 179i: Project in Computer Science (Networks) Jiasi Chen Lectures: 3:10-4pm Watkins 2240 TA:

CS 179i: Project in Computer Science (Networks) Jiasi Chen Lectures: 3:10-4pm Watkins 2240 TA: Shahryar Afzal Lab: Tuesday 4:10-7pm WCH 133 http://www.cs.ucr.edu/~jiasi/cs179i_winter18/ 1 Why Networks? Supports the applications that we use

477 views • 29 slides
Reaching as many viewers as possible using only libre video technologies. Reaching as

Reaching as many viewers as possible using only libre video technologies. Reaching as

How Libre can you go? Reaching as many viewers as possible using only libre video technologies. Phil Cluff, February 2019 Reaching as many viewers as possible using only libre video technologies. Reaching as many web viewers as

651 views • 39 slides
Building and Optimizing Learning- augmented Computer Systems Hongzi Mao October 24, 2019

Building and Optimizing Learning- augmented Computer Systems Hongzi Mao October 24, 2019

Building and Optimizing Learning- augmented Computer Systems Hongzi Mao October 24, 2019 Learning Scheduling Algorithms for Data Processing Clusters . Hongzi Mao, Malte Schwarzkopf, Shaileshh Bojja Venkatakrishnan, Zili Meng, Mohammad

957 views • 62 slides
Using Static Code Analysis to Find Bugs Before They Become Failures Presented by Brian Walker

Using Static Code Analysis to Find Bugs Before They Become Failures Presented by Brian Walker

Using Static Code Analysis to Find Bugs Before They Become Failures Presented by Brian Walker Senior Software Engineer, Video Product Line, Tektronix, Inc. Pacific Northwest Software Quality Conference, 2010 In the Beginning, There Was Lint

486 views • 20 slides

More recommend