Networks ∙ Services ∙ People www.geant.org

Guy Roberts

HEAnet National Conference

GÉANT for HEAnet clients

12th November 2015

GÉANT CTO Office

Networks ∙ Services ∙ People www.geant.org 2

Global R+E connectivity for Ireland

HEAnet + GÉANT provide access for Irish R+E users to the world’s best connected R+E network

Ubiquitous European network | Over 100 countries | 3,000 research institutes and libraries | all major global research institutes and resources

Networks ∙ Services ∙ People www.geant.org 3

GÉANT, JISC dark fibre

Networks ∙ Services ∙ People www.geant.org 4

GÉANT network architecture

Convergence

ZONE

Fibre Leased Circuits

GRBE TR ILEE LV LTSK

HR SI

UK

NL

DE

FR

ES DK

CZ

AT

IT

HU

CH

RO BG

PL IE MT CY

“Fully featured POPs” Off fibre net

POPsIP/MPLS only POPs NREN POPs

(Routerless

POPs)

Circuits

over GÉANT Leased

circuits

MK RS

ME

DWDM

TDM (SDH)

IP/MPLS

Packet Transport (IP/MPLS)PT LU

Off fibre POPs

FRITDE

Hamburg AAP Marseille AAP

Milan (GARR) AAP

Converged Packet Transport Platform Leased

circuits

Networks ∙ Services ∙ People www.geant.org 5

Infinera – 500G on a PIC

DTN-X solution from Infinera

• Photonic integrated circuits (PICs)

• OTN switching core

• Ease of use and excellent service wrap

• Supports GÉANT lambda service:10G and 100G wavelengths

• GÉANT lambda service can be extended beyond the GÉANT dark fibre footprint with third party wavelengths.

Networks ∙ Services ∙ People www.geant.org 6

Juniper MX

MX series of IP/MPLS switch/routers from Juniper

• The Juniper MX can provide a wide array of switched services (based on EoMPLS)

• Includes MP2MP as well as P2P

• Optimised for Ethernet

• Supports 100GE

• Replaces our T series routers

It is also very good at routing…and ready for “virtualisation”

Networks ∙ Services ∙ People www.geant.org

High bandwidth connectivity to most of the world’s universities and research institutions

Access to remote resources

Transmitting large or sensitive data sets

Collaboration with colleagues in multiple locations

International network services available to HEAnet clients

Dedicated international connections (L2, L3, VPN)

Access to GÉANT testbed for network research

International trouble-shooting

Content provider peerings

7

What does that mean for your institution?

http://www.geant.org/geantproject/Services/Pages/Home.aspx

Networks ∙ Services ∙ People www.geant.org

• Multi-domain VPN: supports international MPLS VPNs

• Security and reassurance of a VPN whilst avoiding firewall traffic inspection = trusted Science “DMZ”

• Developed by GÉANT + HEAnet + European NRENs

• Successfully piloted by the Future Internet XIFI project with TSSG/ Waterford Institute of Technology + HEAnet for Federating Future Internet Infrastructures

Adopted by HEAnet for provisioning international L2 and L3 VPNs for Irish users as quickly and easily as within Ireland

8

Case study: MDVPN and XIFI

Networks ∙ Services ∙ People www.geant.org

MDVPN: BGP-signalling L2VPN, L3VPNMDVPN: BGP-signalling L2VPN, L3VPN

eBGP

labeled-unicast

iBGP

labeled-unicast

eBGP

labeled-unicast

Multi-domain PE to PE

MPLS path

Multi-hop eBGP

VPNv4, VPNv6, L2VPN

Multi-hop eBGP

VPNv4, VPNv6, L2VPN

iBGP

VPNv4, VPNv6, L2VPN

BGP-signaled L2VPN and L3VPN

label and prefix exchange

MDVPN is now part of the GÉANT product portfolio

Networks ∙ Services ∙ People www.geant.org

A scientist project using MD-VPN for production

htt

p:/

/in

fogr

aph

ic.la

b.f

i-w

are.

org

/sta

tus

A scientist project using MD-VPN for production

A first scientist project FIWAREFIWARE is a project of the European Public-Private-Partnership on Future Internet (FI-PPP) programme

16 sites connected in 12 countrieshttps://www.fi-xifi.eu/federation.html

Networks ∙ Services ∙ People www.geant.org

• GÉANT connects to over 50 commercial peers at seven IXs in Europe: robust and dense peering mesh

• Reflects the changing way that R+E users access and collaborate; academic resources increasingly provided commercially

• Traffic grown threefold from peaks of 30G in 2014 to 100G today

11

Focus: GÉANT peering service

Networks ∙ Services ∙ People www.geant.org

• GÉANT cloud catalogue, 15 providers: https://catalogue.clouds.geant.net/

• IaaS tender: 30 suppliers have expressed interest.

• NRENs are collaborating on OwnCloud.

• NRENs are deploying the open source Rendez-Vous (JITSI) web conferencing platform based on webRTC, as spearheaded by RENATER. https://rendez-vous.renater.fr/

• The Okeanos IaaS platform from GRNET - adoption pilot.

• Knowledge sharing activity for OpenStack.

• Cloud Showcases: http://services.geant.net/clouds/Activities/Pages/Clouds_Showcases.aspx

12

GÉANT – SA7 supporting clouds

Networks ∙ Services ∙ People www.geant.org

• GÉANT established a peering at AMS-IX with Blackboard in 2014

• Established primarily on behalf of HEAnet clients but benefits all GÉANT users

• Provides HEAnet with robustness of an additional path to Blackboard as well as reassurance about the quality of the network as every step is managed by GÉANT, AMS-IX or HEAnet

13

Focus: Peering service + Blackboard

Networks ∙ Services ∙ People www.geant.org

• A facility to the European network research community for testing novel network architectures quickly and easily

• 2,500km dark fibre infrastructure

• Dynamically provisioned network environments consisting of computational servers, data transport circuits, and switching/forwarding elements.

• Generic API for researcher control of their test-bed resources

• Supports SDN and OpenFlow

• Available for use by Irish network researchers now: contact HEAnet

• More at: http://services.geant.net/GTS/

14

Focus: GÉANT test-bed service

Networks ∙ Services ∙ People www.geant.org

GÉANT Testbed Service (GTS)

RM

Resource A

port p0,

p1;

Resource B

port

out1, out2;

Adjacency

B/out1==A/p0;

Researcher has a brilliant idea

A C

B

Ethernet Switch“B”

VLAN “L1”

Testbed “Alpha” Description

X86 Server“C”Virtual

Circuit “L3”

VLAN “L2”

Virtual Machine“A”

User logs in, and builds a testbed description via a web GUI frontend to their Testbed Control Agent

Resource ManagerAllocates resources and sets up the testbed control plane

Network testbed concept to test novel idea

TCA

Testbed Description Doc fed to RM

Testbed is activated and user controls it via the TCA

TCA

Networks ∙ Services ∙ People www.geant.org

• High capacity connections dedicated to Europe’s R+E users, including:

• 100G to North America

• 10G to China

• International service delivery– p2p, VPN – requires close

collaboration with partners

• Support for international performance issues/improvements

16

Focus: international connectivity

Networks ∙ Services ∙ People www.geant.org

Remote campus support (trans-national education) led by Jisc within GÉANT

Includes: requirement gathering, working with local NREN to establish orimprove connectivity, supporting roll out of services e.g. eduroam.

Case study: UK university with plans to build remote campus on Malta.

Worked with Maltese NREN to design solution, including procurement of new national connectivity to the site and GÉANT upgrade (delivered) to cater for capacity requirements.

End to end service to be provided by Jisc in the UK, entire connection back to the UK provided by R+E networks

Now: preparing business case for dedicated connectivity between GÉANT and the Middle East to benefit institutions with collaborations/ partnerships in the region.

17

Trans-national education

Networks ∙ Services ∙ People www.geant.org

• Joint procurement for cloud services• Objective to bring economies of scale to HEAnet clients

• Work to cost cloud services

• Network greening • HEAnet led work in GÉANT

• Encourage the improvement of energy efficiency of the GÉANT service delivery chain from core GÉANT services > NRENs > connected institutions

• Creation of GÉANT Sustainability Policy + Implementation Strategy

• For more information on all activitiesavailable from HEAnet noc@heanet.ie

18

Beyond the network: collaborative activities

Networks ∙ Services ∙ People www.geant.org 19

• Current IP architecture mirrors the underlying optical fibre links

• As a result IP trunks chain through all routers

HU

CH DE CZ

ATIT SK

HRSI

Fibrelayer

Routinglayer

Old Eastern ringIP trunks follow fibre

100G

40G100G

100G 100G

100G

40G

20G20G

20G

Router interfaces are filled upwith transit traffic

Networks ∙ Services ∙ People www.geant.org 20

• OTN allows flexible and rapid reallocation network services

• PXM cards allow multiple services to terminate on a single DTN-X 100G port

• Allows for fine-grained allocation of GÉANT trunks

• Express links saves on high cost router interfaces

• Trunk capacity can be rapidly adjusted without the need to change routers interfaces

• Optimises for low latency

• Removing n x 10G lags ensures that >10G elephant flows are supported.

New eastern ring IPIP trunks follow traffic not fibre

HU

CH DE CZ

ATIT SK

HRSI

Transmission layer

Routinglayer

50G

100G 50G

50G

50G 50G

40G

50G

10G

10G10G

10G10G

FR

50G

Trunks follow traffic rather than fibre

Networks ∙ Services ∙ People www.geant.org

• HEAnet plays a vital role in furthering the interests of its clients within the GÉANT community

• HEAnet clients don’t just benefit from international bandwidth but bespoke services and support for the particular needs of R+E users

• Encourage you to think about whether your institution could benefit from:

• Dedicated connectivity

• Test-bed access

• International troubleshooting

• Environmental best practice

• Remote campus/overseas partnership connectivity

• For more: engage with HEAnet: noc@heanet.ie

• Find out more about GÉANT: www.geant.org

21

Final thoughts

Networks ∙ Services ∙ People www.geant.org

Thank you

Networks ∙ Services ∙ People www.geant.org

22

guy.roberts@geant.org