* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Download SINET3: NII?s new Network
SIP extensions for the IP Multimedia Subsystem wikipedia , lookup
Passive optical network wikipedia , lookup
TV Everywhere wikipedia , lookup
Piggybacking (Internet access) wikipedia , lookup
Distributed firewall wikipedia , lookup
Computer network wikipedia , lookup
Asynchronous Transfer Mode wikipedia , lookup
Wake-on-LAN wikipedia , lookup
Zero-configuration networking wikipedia , lookup
Cracking of wireless networks wikipedia , lookup
Recursive InterNetwork Architecture (RINA) wikipedia , lookup
Network tap wikipedia , lookup
List of wireless community networks by region wikipedia , lookup
Deep packet inspection wikipedia , lookup
IEEE 802.1aq wikipedia , lookup
Airborne Networking wikipedia , lookup
UniPro protocol stack wikipedia , lookup
Virtual LAN wikipedia , lookup
Fall 2007 Internet2 Member Meeting San Diego, October 8th, 2007 SINET3: NII’s new Network Shigeo Urushidani National Institute of Informatics (NII) 1 Evolution of Japanese Academic Networks SINET3 is integrated successor network to two academic networks, SINET and Super-SINET, economically and flexibly providing rich variety of services. SINET3 started its operations in April 2007 and completed its migration in May 2007. ‘87 ‘88 ‘89 ‘90 ‘91 ‘92 ‘93 ‘94 ‘95 ‘96 ‘97 ‘98 ‘99 ‘00 ‘01 ‘02 ‘03 ‘04 ‘05 ‘06 2007~ Packet Switching Network ▲1987.1 Internet backbone for more than 700 universities and research institutions SINET ▲1992.4 Super-high-speed environment for cutting-edge research Super-SINET ▲2002.1 - Growing traffic and diversified user requirements - Limited abilities of existing IP routers - New trend of end-to-end circuit services SINET3 ▲2007.4 2 Service Categories in SINET3 Best Effort High Priority QoS-guaranteed SINET3 emphasizes four service aspects: transfer layer, virtual private network (VPN), quality-of-service (QoS), and bandwidth on demand. On-demand BW-specified L1VPN Lambda L1VPN L3VPN VPLS (QoS) L2VPN (QoS) Multicast (QoS) Application-based QoS L3VPN VPLS L2VPN Multicast Multi-homing IPv4 IPv6 IP (L3) Ethernet (L2) Lambda/Dedicated (L1) 3 Multiple Layer Services SINET3: integrated network providing all transfer layer services. Users can freely choose best transfer layer for their applications. It provides economical service provision and flexible network resource assignment for ever-changing and unpredictable service demands. Past Networks User Equipment IP Router Ethernet Switch Cutting-edge Device SINET3 User Equipment IP network (Layer 3) Ethernet network (Layer 2) Dedicated line network (Layer 1) IP Router ★ Provides all transfer layer services Innovative Integration Ethernet Switch ★ Integrated network Cutting-edge Device 4 Multiple VPN Services For collaborative research activity: closed user group environment (virtual private network: VPN) is essential for security reasons. Users can choose from L3VPN (IP), L2VPN/VPLS (Ethernet), and L1VPN services. * Virtual Private Network (VPN); Virtual Private LAN Service (VPLS) Super-SINET SINET3 IP Router IP Router IP-based VPN (L3VPN) Secure Closed User Group L3VPN Expansion of Services & Sites VPLS L1VPN Ethernet Switch Analysis device 5 L3VPN (IP-based VPN) National Institute for Fusion Science (NIFS) utilizes L3VPN services for its collaborative research with many universities and research institutions. 6 L2VPN and VPLS (Ethernet-based VPNs) SINET3 provides two types of Ethernet-based VPNs: • Point-to-point-based VPN (L2VPN) • Broadcast-based VPN (Virtual Private LAN Service (VPLS)). e.g. Grid computing research Point-to-point-based VPN (L2VPN) e.g. Earthquake research Broadcast-based VPN (VPLS) 7 L1VPN (Layer-1 VPN) Virtual dedicated lines over shared platform form VPN among specified sites. Users can obtain protocol-free and completely exclusive environment. National Astronomical Observatory of Japan (NAOJ) utilizes L1VPN to transfer constantly-flowing ATM cells from remote telescopes through STM-16 interfaces. On-demand capabilities will be available soon. * Asynchronous Transfer Mode (ATM) e.g. e-Very Long Baseline Interferometry (eVLBI) project 32 m 11 m 32 m 8 Bandwidth on Demand (BoD) Services SINET3 provides BoD services as part of layer-1 services. Users can specify the destinations, duration, bandwidth, and route option. BoD server receives reservation requests, schedules accepted reservations, and triggers layer-1 path setup. Web-based Interface (Destination, Duration, Bandwidth, & Route option) User 1 Gbps (13:00-14:00) On-demand Server Layer-1 path setup trigger On-demand layer-1 path SINET3 9 Service Parameters of L1 BoD Services BoD server allows users to specify destinations, duration, bandwidth, & route option via Web-based interface. : VPN-A : VPN-B Connection Style + Destinations : Non-VPN Pre-configured interfaces VPN - Start Time & - Finishing Time (by 15 minutes) Extranet Bandwidth Public VC-4 Granularity (about 150 Mbps) GE GE STM-64 STM-16 STM-64 10GE Lambda Duration 1≤A≤ 7 1 ≤ B ≤ 64 Route Option - “Minimum Delay” or - “Unspecified” Bandwidth-specified 10 High-level Network Architecture High-level network architecture is composed of transport network, adaptive network control platform, and user-oriented service control platform. User-oriented Service Control Platform - Bandwidth on demand - Enhanced network security - Middleware/application coordination SINET3 BoD Security Middleware UNI, API, GUI … Service Control Platform Dynamic Control Network Control Platform User side IPv6, Multicast, VPN, QoS … Layer 3 (IP) Layer 2 (Ethernet/MPLS) Layer 1 (TDM/Lambda) Adaptive Network Control Platform - Dynamic resource control - Resilient network control - Performance monitoring Hybrid Optical and IP/MPLS Network - Multi-layer accommodation - Enriched VPN - Enhanced QoS - High availability - Flexible resource assignment - 40 Gbps (STM-256) lines 11 Network Structure of SINET3 SINET3 has two-layer structure with edge and core nodes. Edge nodes are edge layer-1 switches with layer-2 multiplexing, which are located in universities or research institutions and accommodate user equipment. Core nodes are composed of high-end IP routers and core layer-1 switches located in public data centers. SINET3 SINET/Super-SINET IP Router Backbone Backbone Router Core Node Core L1 Switch Super-SINET/SINET Router Edge L1 Switch With L2 Mux Edge Node SINET Router 10GE/GE/FE STM-16 : L3 (IP) : L3 (IP) : L2 (Ethernet) : L1 (Dedicated/On-demand) 12 Network Topology of SINET3 Has 63 edge nodes and 12 core nodes (75 layer-1 switches and 12 IP routers). Deploys Japan’s first 40 Gbps lines between Tokyo, Nagoya, and Osaka. Links form three loops in backbone to enable quick service recovery against link and node failures and for efficient use of network bandwidth. 40 Gbps package L1 Switch (NEC UN5000) IP Router (Juniper T640) Hong Kong Singapore Los Angeles New York : 40 Gbps : 10 to 20 Gbps : 1 to 20 Gbps : Core Node (L1 Switch + IP Router) : Edge Node (L1 Switch) Japan’s first 40 Gbps (STM256) lines 13 Accommodation of Multi-layer Services L3 and L2 traffic are accommodated in shared bandwidth by L2 multiplexing and transferred to IP router, where each traffic is encapsulated with MPLS labels as needed. L1 traffic is assigned dedicated bandwidth and separated from L2/3 traffic. L2/3 (or IP/MPLS) traffic bandwidth can be hitlessly changed by LCAS to flexibly accommodate multi-layer services. * Multi-protocol Label Switching (MPLS); Link Capacity Adjustment Scheme (LCAS) FE/GE/10GE data IP Ether data IP VLAN Ether data L3 IP Router data Ether IP Router VLAN Ether L2 Mux IP/MPLS Shared Layer-2/3 traffic MPLS data IP data VLAN Ether MPLS Layer-1 traffic L2 Ethernet Switch L1 Flow Control 10GE Hitless bandwidth change by LCAS STM64/STM16 Core L1 Switch Edge L1 Switch Cutting-edge GE/10GE/ device STM16 SINET3 IP/MPLS traffic STM256/STM64 14 Accommodation of Multi-VPN Services L3VPN, L2VPN, and VPLS are logically separated by internal VLAN tags and logical routers. Each logical router exchanges different protocols for each VPN service. L1VPN and on-demand services need GMPLS protocols to set up layer-1 paths and have separate control planes from that of IP routers. * Generalized MPLS (GMPLS) data IP or data : Logical Router : Virtual routing/forwarding table data IP MPLS VLAN Ether MPLS IPv4/IPv6 (L3) IP Router Aggregation L3VPN (L3) data IP Ether L3 IPv4/IPv6 L3VPN data L2 L1 Ether data IP VLAN Ether data L2 MUX L2VPN VPLS L1VPN L1 VPN Edge L1SW L2VPN (L2) VLAN Ether VPLS (L2) Shared Layer-2/3 traffic Layer-1 traffic Core L1SW L1 VPN IP/MPLS traffic GMPLS Control Plane 15 Architecture for BoD Services BoD server receives reservation requests, schedules accepted requests, and triggers layer-1 path setup to source layer-1 switch via L1-OPS. Source layer-1 switch sets up layer-1 path toward destination using GMPLS. BoD server changes L2/L3 traffic bandwidth by LCAS via L1-OPS as needed. Front-end Destinations, Duration, Bandwidth, & Route Option Layer-1 BoD Server User Scheduling Route calculation Path control Resource management Path setup trigger L1-OPS Path setup request GMPLS control and management plane On-demand Ethernet IP L1SW GMPLS L1SW L1SW L2 MUX L2 MUX Hitless bandwidth change by LCAS L1SW IP Router IP Router 16 Path Calculation in BoD server BoD server calculates best path for route option using two metrics for each link: delay time and available bandwidth for layer-1 services. • For Minimum delay, route is uniquely chosen. • For Unspecified, route that has largest available bandwidth is chosen. Available bandwidth for L1 changes depending on traffic volume of L2/L3. 1 Gbps (VC-4-7v) Fukuoka L1SW Hiroshima L1SW Kanazawa L1SW Kyoto L1SW Sapporo L1SW 0.6 Gbps (VC-4-4v) VCAT 0.45 Gbps (VC-4-3v) Matsuyama Osaka L1SW Nagoya L1SW Tsukuba L1SW Tokyo1 L1SW Sendai L1SW 1 Gbps (VC-4-7v) Route for Minimum Delay Route for Unspecified Route for Unspecified using VCAT Link Bandwidth L1SW Tokyo2 L1SW Available bandwidth for layer-1 services L2/L3 Traffic Pattern Mon Tue Wed Thu Fri Sat Sun 17 High-availability Networking Functions Multiple loops easily enable multi-layer traffic to be detoured in different directions. Layer-1 switches detect link failures very quickly and inform them to neighboring layer-1 switches and IP routers. Service IPv4/IPv6 L3VPN, L2VPN, VPLS L1VPN, On-demand No. of users Very large Small to medium Small Priority of availability Highest High Medium HA function (normal) IP route recalculation MPLS protection & Fast Reroute None HA function (option) - - GMPLS LSP Rerouting Criteria Fukuoka Hiroshima Kyoto Kanazawa IP MPLS IP route recalculation MPLS Protection & Fast Reroute IP Matsuyama TDM Tokyo2 (option) GMPLS LSP Rerouting TDM MPLS Osaka Hokkaido Nagoya Tokyo1 Tsukuba Sendai 18 Main Features of SINET3 (Summary) Items Services Features Multiple Layer • L3 (IP), L2 (Ethernet), & L1 (dedicated/on-demand) Enriched VPN • Virtual Private Network for layers 1 to 3 Enhanced QoS • Support for real-time applications Layer-1 BoD • Support for data-intensive applications Value-added • Network performance monitoring Hybrid Network Architecture Network Technologies Examples • Hybrid network of layer-1 switches and IP routers • 75 layer-1 switches nationwide • 12 IP routers at backbone sites High Flexibility • Flexible resource assignment to multiple layers High Availability • Fast service recovery owing to multi-loop topology Large Capacity • Introduction of Japan’s first STM-256(40 Gbps) lines NG SDH/SONET • GFP, VCAT, & LCAS GMPLS • RSVP-TE, OSPF-TE, GMPLS-UNI, & GMPLS LSP rerouting Logical Router • Logical routers for IPv4/IPv6, L3VPN, L2VPN, & VPLS Advanced MPLS • MPLS-based VPN for L3VPN, L2VPN, & VPLS Fast Detour • Multi-layer detour triggered by layer-1 switches 19 Schedule SINET3 started to provide L3VPN, L2VPN, & L1VPN (static) services, as well as IPv4/IPv6 dual stack services in April 2007. Starting VPLS services soon and layer-1 BoD services in February 2008. Year 2006 2007 2008 Overlay construction SINET3 Operation In operation (01/04/2007) Migration Complete (31/05/2007) IPv4/IPv6 dual stack L3VPN SINET3 Services L2VPN L1VPN (static) VPLS On-demand Enhanced (GMPLS-based) GMPLS Today 20 Thank you very much! 21 Backup Slides 22 Multiple QoS Services SINET3 provides QoS by identifying applications, VPNs, & physical/logical ports. Layer-2/3-based QoS has four priority classes: expedited forwarding (EF), network control (NC), assured forwarding (AF), & best effort (BE). Layer-1-based QoS has smallest packet delay, no delay variance, & no packet loss. SINET3 SINET/Super-SINET HDTV Node Congestion Expedited QoSaware NW control Assured Best effort Best Effort Network congestion affects all services Uncompressed HDTV End-to-end on-demand path Application/VPN/port-based QoS control 23 Accommodation of Multi-QoS Services Layer-3/2-based QoS • User Priority bits of internal VLAN tags are marked at edge L2 MUX. • User Priority bits are mapped into DSCP (IP) or EXP (MPLS) bits at IP router. • There are four forwarding classes: EF, NC, AF, & BE. Layer-1-based QoS • Layer-1 switches assign end-to-end bandwidth on demand. Marking User Priority bits by identifying IP/Ethernet header data IP IP (L3) data Ether Ethernet (L2) Dedicated (L1) Prioritizing for Ether IP L2 MUX IP VLAN Prioritizing for IP Mapping User Priority bits into IP DSCP or MPLS EXP bits EF User Priority based classifier NC AF Shared Layer-2/3 traffic BE VLAN Ether Internal VLAN tag Identifier Priority IP MPLS mapping for IP DSCP& EXP based Priority classifier mapping for Ether Ether MPLS IP Router EF NC AF BE Layer-1 traffic Edge L1SW • Smallest packet delay • No delay variance • No packet loss Core L1SW 24 Functions of BoD Server BoD server software is composed of following function modules: • Front-end functions • Admission control and scheduling • Path calculation • Path control • Resource management Layer-1 BoD Server Database Front-end User DB L1SW-DB Path DB Usage DB Route DB Resource DB Admission Control, Scheduling User GUI IF (Web browser) http(s) - User Authentication IF - Session management Operator GUI IF (Web browser) http(s) - Request Acceptance - Admission Control, Scheduling - Database Registration Path Control - L1 Path Setup/Release - IP/MPLS Bandwidth Change L1-OPS Path Calculation - Route Selection - Link Selection Resource Management - L1 Path Management - L1 Path Monitoring : Function Module 25