dren overview - nitrd · dren overview phillip dykstra ... cell 1 router army tic router cisco gsr...
TRANSCRIPT
DREN Overview
Phillip DykstraChief Scientist
WareOnEarth Communications [email protected]
JET Workshop13 April 2004
DREN
• Part of the High Performance Computing Modernization Program (HPCMP)
• Serves Science and Technology (S&T) and Modeling and Simulation (M&S)
• Connects four Major Shared Resource Centers (MSRC) and numerous Distributed Centers (DC)– Over 40 TFLOPs of computing resources
OC-3
OC-3
Morrow Bay
Hillsboro, OR
(Japan-US)
(Southern Cross)
MHPCC
PMRF
U of HI
Pearl City
DREN
DREN
HAY
PNG
vBNSOC-48
vBNSOC-48
= U of HI Router (Not Managed by DREN)
= DREN Routers to be Managed by MCI NOC
Legend
= DCN Router
NCTAMs
OC-3GIG-EDCN
M20
Internet
DREN and UH Collaboration
MOONv6 ArchitectureHigh Level Architecture
UNH InteroperabilityNetwork
(Edge Network)
DISN-LES
ScottAFB
Router
Army TICTest Network
Ft MonmouthTest Network
Scott AFBTest Network
MCNOSCTest Network
Ft MonmouthCERDECRouter
Ft MonmouthCell 1 Router
ARMY TICRouter
CiscoGSR
JITC
OC3 ATMMulti Mode
OC3 ATMMapped PVCs
Sunnydale CA andSeattle WA
Fast Ethernetvia fiber
Internet 2
SPAWARCharelston
Router
NASAAmes
PAIX
LAIX UCSD
NYIX6STARTAP UNH
JITC I.H. DCTS
Test Network
DRENATM
Router
JITCRouter at
Indian Head, MD
MCNOSCRouter
SPAWAR TestNetwork
SPAWARWest
JITC InteroperabilityTest Network
(Edge Network)
Cisco IOSFirewall
DREN IPv6Network
DoD IPv6 PilotsSystem Transition Schedule
FY05
FY04
FY06
FY07
FY08
GIG-BE(Secret, SCI)
NIPRNET DCTS CITS NCES
DREN DISN-LES
NMCI
GSRNet
GCSS GCCS
SIPRNET ICE2 DCGS CHCS
Network Application
WARP
GNCST
Net-BLTSNORA
JIVA BCT
Everyone
GBS
DREN Contract
• Awarded to MCI, June 2002• 3 years + 7 option years• Transition from AT&T Jan – Jun 2003• DS3 through OC192 +• MPLS VPN over the vBNS+ core• IPv4, IPv6, ATM services
Service Delivery Points (SDP)
• Interface between site and DREN WAN• Juniper M-series router
– IP and/or ATM over MPLS– “one box solution” I.e. no ATM switch
• Optional items– Network Intrusion Detection (NID)– AMP Performance Monitor– ATM and/or IP encryption
HSJRTO
HAY
SEJ
DNG
WAE
NAP
NAP
NAP
I
NAP
I
I
I
NAP
I
= DCN Router
= DCN ATM Switch
= NAP Peer Location
= Internet Transit
Legend
DREN Core Nodes (DCN)
Why ATM?
• Secret+ encryption at wire speed• VPN’s (incl. multicast and broadcast!)• QoS• Traffic Engineering• Circuit Emulation• Special VTC applications
Why MPLS?
• Allowed ATM over IP– But without QoS
• Alternate solution to several VPN and Traffic Engineering uses of ATM
Are Light Paths the Answer?
• ATM and MPLS let us share bandwidth in the WAN (lower cost), lambda’s don’t
• Light paths could be ATM all over again– Didn’t connectionless win?
• Maybe just a step in getting telco stuff out of the way?
Micro Air VehiclesMicro Air Vehicles Joint Strike FighterJoint Strike Fighter
HPCMP ApplicationsHPCMP Applications
Surveillance SystemsSurveillance Systems
Smart Weapons DesignSmart Weapons Design
Unmanned Air VehicleUnmanned Air Vehicle
Blast ProtectionBlast Protection
Parachute SimulationsParachute Simulations
Ocean ModelingOcean Modeling
Network Stressing Apps
• Large File Transfer– Still the number one requirement
• Disaster Recovery (DR)– Remote site backup of supercomputer data
• Extreme Multicast– Thousands of groups that come and go very
quickly
ATM Teleconferencing
• Marconi Virtual Presence (ViPr)• High quality audio and video (MPEG2)• Stress tests the ATM over MPLS network
– Had to increase 1 msec CDTV in ATM switches
Security(incl IPv6 and wire speed)
• Encryption– ATM Fastlane (KG75) – wire speed to OC12– IP TACLane (KG175) – not wire speed– IPsec for unclassified
• Kerberos/SecurID infrastructure– kftp tools and Kerberized apps
• CAC Cards for PKI certificates• Network Intrusion Detection
DREN Timeline
2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012
MCI Contract
Workshop Scope
AT&T
IPsec
OC48OC192
OC12OC12
OC12OC48
OC192OC768
OC768Lambda?
SitesWAN
Video
IPv6 DoDIPv6 DREN