Presentation is loading. Please wait.

Presentation is loading. Please wait.

LHCONE NETWORK SERVICES: GETTING SDN TO DEV-OPS IN ATLAS Shawn McKee/Univ. of Michigan LHCONE/LHCOPN Meeting, Taipei, Taiwan March 14th, 2016 March 14,

Published byEleanor Richards Modified over 8 years ago

Similar presentations

Presentation on theme: "LHCONE NETWORK SERVICES: GETTING SDN TO DEV-OPS IN ATLAS Shawn McKee/Univ. of Michigan LHCONE/LHCOPN Meeting, Taipei, Taiwan March 14th, 2016 March 14,"— Presentation transcript:

1 LHCONE NETWORK SERVICES: GETTING SDN TO DEV-OPS IN ATLAS Shawn McKee/Univ. of Michigan LHCONE/LHCOPN Meeting, Taipei, Taiwan March 14th, 2016 March 14, 2016 1

2 Within LHCONE we have had a point-to-point service effort for quite a while. –It has been challenging to make progress beyond a few limited demonstrations Within the LHC experiments there has been interest in what might be possible with networking and especially with how a future production quality software defined networking capability would fit with the way the experiments manage, operate and orchestrate their globally distributed resources –Network device support for SDN has not really been “production quality”…hard to interest the experiments in even testing because of problems getting anything enabled between sites of interests How best to make some progress? Context for this Presentation March 14, 2016 2

3 While we have dabbled as a community for years with various SDN capabilities we have never managed to effectively bridge the gap into the core LHC experiment middleware and workflow systems. Why? –The experiments have their own “stove-pipes” of effort and there hasn’t been much interaction with networking –The experiments focused on what they perceive as bigger problems they must face We have helped ensure the network has been the most reliable and capable component of their distributed infrastructure –Our test implementations are typically one-offs designed to demonstrate features and capabilities but not then easily translated into use with existing production systems. –SDN itself (both software and hardware) has not been near “production quality” to-date. This is improving rapidly, new hardware/chipsets are much more capable, problems with software usability improving. Challenges Getting SDN into LHC Production Systems March 14, 2016 3

4 To make progress with SDN capabilities for LHC we need to start focusing on enabling new SDN features in production instances, blending production and development. dev-ops –Software and technology development has called doing this “dev-ops” (Development and Operations) One shortcoming in the P2P effort to-date has been the significant challenge in getting all the way to the ends: to the servers that source and sink our data. –We have been able to create WAN circuits but it then gets “messy” for how those are actually used to carry the right traffic for production activities OpenvSwitchWe now have an interesting option to help us: Open vSwitch (openvswitch.org). OpenFlow OVSDB –This is well tested, supported software to create virtual switches on Linux (and other OSs) with traffic control and shaping and OpenFlow and OVSDB support. Getting SDN to the Ends using Dev-Ops March 14, 2016 4

5 There is a web page on the Wiki below documenting both the creation of RPMS for Redhat/CentOS/SL 6.x and their deployment onto existing hosts: –https://www.aglt2.org/wiki/bin/view/AGLT2/InstallOpenvSwitchhttps://www.aglt2.org/wiki/bin/view/AGLT2/InstallOpenvSwitch –This web site will soon provide some detailed and tested configuration examples for implementing OVS on hosts with various types of network configuration (bonded, VLANs, multiple interfaces, etc) The idea is to move your systems IP addresses off from their existing physical (or virtual OS) NICs and onto the OVS bridge you will bring up. OVS can be installed and turned on without any impact to the running system (install RPM, activate service) –It is actually moving the IP that is potentially disruptive and must be done with some care. The URL above has details. Details on Deploying Open vSwitch (OVS) March 14, 2016 5

6 OVSBy getting OVS in place on LHC production storage systems we immediately gain visibility and control all the way to the sources and sinks of data-flows for LHC OVS LHONEWe have verified that OVS has almost no measureable impact when shaping traffic on 10G NICs (See Ramiro’s presentation at the last LHONE meeting: https://indico.cern.ch/event/401680/contribution/16/attachments/1 178611/1705261/LHCONE-AM_SDN_OVS_rv1.pdf https://indico.cern.ch/event/401680/contribution/16/attachments/1 178611/1705261/LHCONE-AM_SDN_OVS_rv1.pdf OVS OVSHaving OVS running on production systems with the IPs moved to the OVS bridge allows us to continue to operate all production services identically to how they were operated prior to installation and configuration –The big win is that we can start to do simple tests incorporating specific flows or sets of servers into end-to-end circuits. –Gradually, we can verify the impact of using such capabilities with LHC production systems and, if positive, it makes a strong argument for other sites to begin joining the effort. Advantages of OVS on Production Instances March 14, 2016 6

7 Diagram of Possible Future SDN Dev-Ops Testbed March 14, 2016 7 Site A Agent OVS Transfer Node (OVS+FDT/GridFTP) Transfer Node (OVS+FDT/GridFTP) Site B Agent OVS PanDA/DaTri Agent NSA_N NSA_1 STP A STP B OVS tail (site dependent) OVS tail (site dependent) LHCONE p-t-p Multi-domain Fabric Request circuit New path Start transfer 1 Data Plane Control Plane 1) Request WAN circuit 2) Integrate circuit with OVS 3) Transfer on new E2E path 2 In development Currently in place Interfaces 3 Original Slide from Ramiro/Azher, Caltech

8 Challenges March 14, 2016 8 OVSWhile having OVS “at the ends” will be a huge step forward for our Point-to-Point work, there remain a number of challenges OVSThe primary challenge is integrating existing circuit creation systems with OVS as a participant OVS –How can we incorporate the OVS-enabled end-systems seamlessly into the end-to-end circuit? OVSHow best to use the many OVS features to improve the overall performance of the circuit? The main “meta-question”: How can SDN capabilities improve the LHC experiments ability to manage, utilize and optimize their global infrastructure? –There is a lot of work to do to investigate this: Getting SDN “in-line” with production LHC work is our first step!

9 OVSFinalize testing of OVS Configuration to support various network configurations AGLT2MWT2AGLT2 (Michigan, Michigan State) and MWT2 (Illinois, Indiana and University of Chicago) have agreed to deploy OVS onto their ATLAS dCache storage systems –Total of 8.7 Petabytes of storage between the two –Most system dual 10G connected; sites 80 Gbits to WAN –This will provide an example to experiment with SDN end-to-end using real ATLAS production traffic We want to expand as soon as is feasible. Interest from –DE-KIT –Possible Canadian participation –Seeking additional sites with real use cases (at least one more in North America and in Europe) OVSTimescale April-May 2016 for initial tests (assumes documentation and initial OVS configurations documented and tested by end of March) Email Shawn McKee if your site is interested in participating Next Steps March 14, 2016 9

10 QUESTIONS & COMMENTS Shawn McKee smckee@umich.edusmckee@umich.edu March 14, 2016 10

Download ppt "LHCONE NETWORK SERVICES: GETTING SDN TO DEV-OPS IN ATLAS Shawn McKee/Univ. of Michigan LHCONE/LHCOPN Meeting, Taipei, Taiwan March 14th, 2016 March 14,"

Similar presentations

INDIANAUNIVERSITYINDIANAUNIVERSITY GENI Global Environment for Network Innovation James Williams Director – International Networking Director – Operational.

INDIANAUNIVERSITYINDIANAUNIVERSITY GENI Global Environment for Network Innovation James Williams Director – International Networking Director – Operational.
Distributed Data Processing

Distributed Data Processing
Internet2 and AL2S Eric Boyd Senior Director of Strategic Projects

Internet2 and AL2S Eric Boyd Senior Director of Strategic Projects
Internet2 Network: Convergence of Innovation, SDN, and Cloud Computing Eric Boyd Senior Director of Strategic Projects.

Internet2 Network: Convergence of Innovation, SDN, and Cloud Computing Eric Boyd Senior Director of Strategic Projects.
SDN and Openflow.

SDN and Openflow.
Keith Wiles Keith.Wiles@Intel.com DPACC vNF Overview and Proposed methods Keith Wiles Keith.Wiles@Intel.com 2015.04.03 – v0.5.

Keith Wiles DPACC vNF Overview and Proposed methods Keith Wiles – v0.5.
Integrating Network and Transfer Metrics to Optimize Transfer Efficiency and Experiment Workflows Shawn McKee, Marian Babik for the WLCG Network and Transfer.

Integrating Network and Transfer Metrics to Optimize Transfer Efficiency and Experiment Workflows Shawn McKee, Marian Babik for the WLCG Network and Transfer.
Network+ Guide to Networks, Fourth Edition Chapter 1 An Introduction to Networking.

Network+ Guide to Networks, Fourth Edition Chapter 1 An Introduction to Networking.
(ITI310) By Eng. BASSEM ALSAID SESSIONS 8: Network Load Balancing (NLB)

(ITI310) By Eng. BASSEM ALSAID SESSIONS 8: Network Load Balancing (NLB)
Abstraction and Control of Transport Networks (ACTN) BoF

Abstraction and Control of Transport Networks (ACTN) BoF
Cloud computing Tahani aljehani.

Cloud computing Tahani aljehani.
Public and Private Clouds: Working Together

Public and Private Clouds: Working Together
We will be covering VLANs this week. In addition we will do a practical involving setting up a router and how to create a VLAN.

We will be covering VLANs this week. In addition we will do a practical involving setting up a router and how to create a VLAN.
CLIENT A client is an application or system that accesses a service made available by a server. applicationserver.

CLIENT A client is an application or system that accesses a service made available by a server. applicationserver.
Lecture 1 Internet CPE 401 / 601 Computer Network Systems slides are modified from Dave Hollinger and Daniel Zappala Lecture 1 Introduction.

Lecture 1 Internet CPE 401 / 601 Computer Network Systems slides are modified from Dave Hollinger and Daniel Zappala Lecture 1 Introduction.
FIORANO SERVICE BUS The Cloud Enablement Platform

FIORANO SERVICE BUS The Cloud Enablement Platform
Is Lambda Switching Likely for Applications? Tom Lehman USC/Information Sciences Institute December 2001.

Is Lambda Switching Likely for Applications? Tom Lehman USC/Information Sciences Institute December 2001.
What if you suspect a security incident or software vulnerability? What if you suspect a security incident at your site? DON’T PANIC Immediately inform:

What if you suspect a security incident or software vulnerability? What if you suspect a security incident at your site? DON’T PANIC Immediately inform:
1 Apache. 2 Module - Apache ♦ Overview This module focuses on configuring and customizing Apache web server. Apache is a commonly used Hypertext Transfer.

1 Apache. 2 Module - Apache ♦ Overview This module focuses on configuring and customizing Apache web server. Apache is a commonly used Hypertext Transfer.
2016-5-261 SDN based Network Security Monitoring in Dynamic Cloud Networks Xiuzhen CHEN School of Information Security Engineering Shanghai Jiao Tong University,

SDN based Network Security Monitoring in Dynamic Cloud Networks Xiuzhen CHEN School of Information Security Engineering Shanghai Jiao Tong University,

Similar presentations

Ads by Google