Upload File

oess am, oess stitching flowspace firewall al2s and geni

  • Home
  • Documents
  • OESS AM, OESS STITCHING FLOWSPACE FIREWALL AL2S and GENI
6
OESS AM, OESS STITCHING FLOWSPACE FIREWALL AL2S and GENI

Upload: dominic-owen

Post on 16-Dec-2015

214 views

Category:

Documents


1 download

Report

TRANSCRIPT

Page 1: OESS AM, OESS STITCHING FLOWSPACE FIREWALL AL2S and GENI

OESS AM, OESS STITCHINGFLOWSPACE FIREWALL

AL2S and GENI

Page 2: OESS AM, OESS STITCHING FLOWSPACE FIREWALL AL2S and GENI

• OESS provides point-to-point and multipoint circuits across an OpenFlow substrate. Deployed on Internet2’s AL2S network.

• OESS AM provides a GENI interface to OESS circuit provisioning– Takes GENI AM API requests and translates them into OESS API

requests

• Based on FOAM -- modified to support OESS API– Advertises available AL2S/OESS resources (endpoints, trunks)– Receives requests for AL2S/OESS circuit creation/removal, talks to

AL2S OESS to make changes to network– ‘GENI-FOAM’ workgroup defines access policy for GENI users

• New for this GEC: Stitching support

FOAM on AL2S

Page 3: OESS AM, OESS STITCHING FLOWSPACE FIREWALL AL2S and GENI

• FOAM OESS AM extended to support stitching

• Stitching supported on any AL2S interface that has interdomain provisioning enabled– NOC ticket to enable port for interdomain– Port owner creates ACL(s) granting ‘GENI-FOAM’ workgroup access

to a set of VLANs– AL2S AM will then automatically advertise this port in stitching

advertisement

– Current Limitations: • 1 circuit per request. • One remote link per port.

AL2S Stitching

Page 4: OESS AM, OESS STITCHING FLOWSPACE FIREWALL AL2S and GENI

Stitching Advertisement <stitch:stitching xmlns="http://hpn.east.isi.edu/rspec/ext/stitch/0.1/"> <stitch:aggregate id="urn:publicid:IDN+al2s.internet2.edu+authority+am" url="http://foam-oess-stage.grnoc.iu.edu:3626/foam/gapi/2"> <stitch:aggregatetype>oessfoam</stitch:aggregatetype> <stitch:stitchingmode>chainANDTree</stitch:stitchingmode> <stitch:scheduledservices>false</stitch:scheduledservices> <stitch:negotiatedservices>false</stitch:negotiatedservices> <stitch:node id="urn:publicid:IDN+al2s.internet2.edu+node+sdn-sw.clev.net.internet2.edu"> <stitch:port id="urn:publicid:IDN+al2s.internet2.edu+stitchport+sdn-sw.clev.net.internet2.edu:e5/1"> <stitch:capacity>10000000</stitch:capacity> <stitch:maximumReservableCapacity>10000000</stitch:maximumReservableCapacity> <stitch:minimumReservableCapacity>10000000</stitch:minimumReservableCapacity> <stitch:granularity>1000</stitch:granularity> <stitch:link id="urn:publicid:IDN+al2s.internet2.edu+interface+sdn-sw.clev.net.internet2.edu:e5/1:*"> <stitch:remoteLinkId>urn:publicid:IDN+ion.internet2.edu+interface+rtr.clev:et-5/0/0:al2s</stitch:remoteLinkId> <stitch:trafficEngineeringMetric>10</stitch:trafficEngineeringMetric> <stitch:capacity>100000000</stitch:capacity> <stitch:maximumReservableCapacity>100000000</stitch:maximumReservableCapacity> <stitch:minimumReservableCapacity>1000</stitch:minimumReservableCapacity> <stitch:granularity>1000</stitch:granularity> <stitch:switchingCapabilityDescriptor> <stitch:switchingcapType>l2sc</stitch:switchingcapType> <stitch:encodingType>ethernet</stitch:encodingType> <stitch:switchingCapabilitySpecificInfo> <stitch:switchingCapabilitySpecificInfo_L2sc> <stitch:interfaceMTU>9000</stitch:interfaceMTU> <stitch:vlanRangeAvailability>3900-4000</stitch:vlanRangeAvailability> <stitch:vlanTranslation>true</stitch:vlanTranslation> </stitch:switchingCapabilitySpecificInfo_L2sc> </stitch:switchingCapabilitySpecificInfo> </stitch:switchingCapabilityDescriptor> </stitch:link> </stitch:port>

</stitch:node > …

Page 5: OESS AM, OESS STITCHING FLOWSPACE FIREWALL AL2S and GENI

• OESS selects shortest path between the endpoints• Transparent VLAN translation across core

Stitching Request<hop id="3"><link id="urn:publicid:IDN+al2s.internet2.edu+interface+sdn-sw.clev.net.internet2.edu:e5/1:*"><trafficEngineeringMetric>10</trafficEngineeringMetric><capacity>100</capacity><switchingCapabilityDescriptor><switchingcapType>l2sc</switchingcapType><encodingType>ethernet</encodingType><switchingCapabilitySpecificInfo><switchingCapabilitySpecificInfo_L2sc><interfaceMTU>9000</interfaceMTU><vlanRangeAvailability>1760-1779,3950-4000</vlanRangeAvailability><suggestedVLANRange>3960</suggestedVLANRange><vlanTranslation>true</vlanTranslation></switchingCapabilitySpecificInfo_L2sc></switchingCapabilitySpecificInfo></switchingCapabilityDescriptor></link><nextHop>4</nextHop></hop>

<hop id="2"><link id="urn:publicid:IDN+al2s.internet2.edu+interface+sdn-sw.wash.net.internet2.edu:e5/2:*"><trafficEngineeringMetric>10</trafficEngineeringMetric><capacity>100</capacity><switchingCapabilityDescriptor><switchingcapType>l2sc</switchingcapType><encodingType>ethernet</encodingType><switchingCapabilitySpecificInfo><switchingCapabilitySpecificInfo_L2sc><interfaceMTU>9000</interfaceMTU><vlanRangeAvailability>670,3706-3750,3950-4000</vlanRangeAvailability><suggestedVLANRange>3959</suggestedVLANRange><vlanTranslation>true</vlanTranslation></switchingCapabilitySpecificInfo_L2sc></switchingCapabilitySpecificInfo></switchingCapabilityDescriptor></link><nextHop>3</nextHop></hop>

Page 6: OESS AM, OESS STITCHING FLOWSPACE FIREWALL AL2S and GENI

• Provides sliced OpenFlow interface to AL2S• Slices are differentiated by VLAN ID

– Each slice is allocated one or more VLAN IDs on a set of edge and trunk ports

• Flowspace Firewall acts as a proxy, enforcing VLAN policy for each slice

• Enforces rate limits for each slice on OpenFlow control channel• FlowStats slicing

• Deployed on Internet2 AL2S network on June 17

• Open source: https://github.com/GlobalNOC/FlowSpaceFirewall

Flowspace Firewall


Cours Geni Civil6

TransGen Energy, Inc. - Operational Energy Security Solutions (OESS) Program

Electrical Oess

Understandingfinancialstatements geni whitehouse

GENI - Seminário - Inatel

GENI Architecture: Transition

GENI OpenFlow Experimentation on AL2S

GENI Mesoscale and The GENI Experiment Engine

Geni civil Syllabus

Geni Tutorial Part1

Chip Elliott GENI Project Director June 22, 2010 geni

FIBRE-BR Meeting GENI I&M Marcelo Pinheiro. Agenda GENI Overview GENI User groups GENI I&M Use Cases GENI I&M Services

U.S. Geothermal - GENI

Genetica...Genetica-studio dei geni e genomi-le loro basi biochimiche-come funzionano i geni-come sono controllati i geni-come sono organizzati i geni-come replicano i geni-come cambiano

GENI Science Shakedown

Cours Geni Civil5

GENI Laboratory Exercises Development for a Cloud ...faculty.missouri.edu/calyamp/publications/geni-cclabs-gree14.pdf · GENI Laboratory Exercises Development for a Cloud Computing

GENI Exploring Networks of the Future GENI Spiral 2

OESS - TenneT

GENI Work Breakdown Structure 9.15.06groups.geni.net/geni/raw-attachment/wiki/OldGPGDesignDocuments/G… · GENI Work Breakdown Structure GDD-06-29 GENI: Global Environment for Network

January 2, 2008 GENI Global Environment for Network Innovations The GENI Project Office (GPO) Clearing house for all GENI news

TGE-OESS Brochure

Geni e cancro

GENI I&M and Monitoring GENI Engineering Conference 14 Boston, MA

HPID and OEID Overview Kari Gaare, OESS April 17, 2013 1

GENI CC-NIE Workshop GENI Network Stitching Architecture and Status

Sponsored by the National Science Foundation Tutorial: OpenFlow in GENI GENI Project Office

Internet2 and AL2S Eric Boyd Senior Director of Strategic Projects

CR-GENI - GENI Open Cognitive Radio Platform

Technology/Telecom OESS Insurance Consulting PRIDE/RESPECT November 5, 2004

GENI Engineering Conference 13 Session The GENI Federation Software Architecture

Geni Tutorial Part2

A DECADE OF EAAE OESS REMARKABLE PROGRESS

GENI Networking Demos

Welcome to GENI Global Environment for Network Innovations The GENI Project Office (GPO)