TNC 2007

A user provisioning tool for Ethernet and optical services based on UCLPv1

Sergi Figuerolai2CAT Project coordinator

(on behalf of Angel Sanchez)

2

UCLP-HEAnet experiences Introduction

• To adapt UCLPv1.5 system to make it compatible with HEAnet's network equipment.

• This project attempted to provide a proof of concept to allow HEAnet network users to manage their own connections by means of ethernet connections (virtual circuits).

• The software provides a web-based GUI to establish, manage and query connections controlled directly by the user.

• Several international demos performed:– End user provisioning of Catalyst 3750 and 7600– End user provisioning of Glimmerglass Optical Switch

3

What’s UCLP? • UCLP stands for User Controlled Lightpath Provisioning.

• As Bill St. Arnaud from CANARIE says:'UCLP can be very simply though of as a configuration and partition manager that exposes each lightpath in a physical network and each network element associated with a lightpath as an 'object' or 'service' that can be put under the control of different network users to create their own IP network topologies'.

• This way several network operators can make part of their resources available to end users so that they can decide when they want to create/delete end to end connections or change the network topology.

4

LightPath

Slot / Port

• A LightPath Object (LPO) is an abstraction of one or more lightpaths (represents a connection between two consecutive nodes).

• A Resource Object (RO) is an abstraction of a network interface (Ethernet, SONET/SDH, wavelength WDM).

• An End-to-End Connection Object (E2ECO) is an abstraction of an e2e connection within the UCLP system.

What’s UCLP? Definitions

User B

RO B

User A

RO A

LPO LPO

LPO • A federation is an independent management domain that has its own set of UCLP resources and services.

5

What’s UCLP? Software Architecture

FederationManager

Jini Lookup Service

GSAP

JSAP

LPOS

JS

SCSTxnManager

GMPLS

cloud

O-UNI

Federation 2

SCS SCS SCS

LPOS JS

JSAP

GSAP

TxnManager

Jini Lookup Service

TL-1/CLI/SNMPTL-1/CLI/SNMPTL-1/CLI/SNMP

Jini/RMI

Federation 1

GUI(OGSA Client)

GUI(JINI Client)Human user

Grid application

SOAPSOAP

Jini/RMI

6

HEAnet’s UCLP Main Goal

• Provide software to establish and control VLAN mode and Port mode virtual circuits across HEAnet’s network

• Create a UCLP release compatible with HEAnet’s network elements and architecture

MPLS Network

PE2

PE1

CE2

CE1CPE1

CPE2

Catalyst 3750 12 SFP Standard Multilayer Image

Catalyst 3750 12 SFP Standard Multilayer Image

Catalyst 3750 16 10/100/1000BT+ 10GbE

Std Image

Catalyst 3750 16 10/100/1000BT+ 10GbE

Std Image

Cisco 7604

Cisco 7604

CE3 Catalyst 3750 12 SFP Standard Multilayer Image

General architecture of the network

7

• The two key layer 2 Ethernet Virtual Circuit (EVC) services that HEAnet shall provide are:

• Port mode VC (EWS) is a point-to-point port-based transparent EVC that is used primarily to connect geographically remote LANs over the HEAnet network.

HEAnet’s UCLP Services types

PE

PE

7606

PE

7606

PE

7606

3750

CPE

802.1q Trunk port

LSPs, “pseudowires”

q-in-q performed on

both ports

HEAnet MPLS network

PE

3750

CPE

PE

3750

CPE

q-in-q

Port Mode VC

Non-trunk port(optionally)

q-in-q

802.1q Trunk port

Non-trunk port(optionally)

8

• VLAN mode VC (ERS) is a point-to-point VLAN-based EVC. It is presented to the user as an 802.1q trunk which filters customer Layer 2 control protocols and uses the different customer VLAN IDs to direct customer traffic to different destinations. ERS is a non-transparent service, which means that the customer Layer 2 control protocols are dropped.

HEAnet’s UCLP Services types

PE

PE

7606

PE

7606

PE

7606

3750

CPE

802.1q Trunk port

LSPs, “pseudowires”

Trunking

HEAnet MPLS network

PE

3750

CPE

PE

3750

CPE

Trunking

802.1q Trunk port

802.1q Trunk port

Non-trunk port(optionally)

VLAN mode VC

9

HEAnet’s UCLP Resource partitioning

• In order to offer these Ethernet services, network resources have to be partitioned accordingly to the needs of each connection, since several connections can use the same port or link.

• This implies that “parent” ResourceObjects and LightPathObjects have to be partitioned in several sub-resources, one for each connection that uses them.

• Manually-generated ROs and LPOs are called “parents”, and do not participate in any connection, only have information about the physical resource and the remaining capacity in that resource.

• Each time a connection is requested, parent resources partition themselves to generate sub-resources with enough capacity for the connection. After that the parent resources updates its current available bandwidth.

10

HEAnet’s UCLP Resource partitioning

ParentLPO 1000Mbps

Connection request 100Mbps

Parent ROs 1000Mbps

ParentLPO 900Mbps

Parent ROs 900Mbps

+ChildLPO 100Mbps

Children ROs 100Mbps

Connection!

11

HEAnet’s UCLP Supported devices

• UCLP’s adaptation for HEAnet supports the following devices:– Cisco 7600 routers (created from scratch)

– Cisco Catalyst 3750 switches and stacks (modification of an existent package, keeping full compatibility)

• Moreover, a new pseudo device has been implemented to support connections across MPLS networks (MPLSCloud). This pseudo device contains instances of the edge devices of the cloud

• In addition to the MPLSCloud, a new type of resource object has been defined (MPLSRO). This kind of resource object represents edge interfaces of an MPLSCloud

12

HEAnet’s UCLP E-DI

– the human user interacting with network devices through CLI

– management application programs interacting with network devices through an XML programmatic interface.

• Cisco E-DI provides a CLI user interface (CLI-UI) and an XML programmatic interface (XML PI). Cisco E-DI can be deployed in conjunction with a management application, or in a stand-alone configuration.

• E-DI has been integrated in ULCP in order to give the possibility to manage equipment with the E-DI XML PI.

• E-DI stands for Enhanced Device Interface

• Cisco E-DI provides a comprehensive management interface for Cisco devices and offers interfaces for two categories of users:

13

UCLP+E-DI architecture

E-DI SERVERSUCLP SERVER

Internet

Cisco Network Devices

SSH/Telnet

Configure directly via E-DI

• • • • •• UCLP contacts E-DI servers trough SSH/Telnet

• E-DI servers configure the equipment

E-DI SERVER

PISCES.I2CAT.NETIP: 192.168.114.8

EoMPLS NETWORK

Cisco Catalyst 3750G-12S+

Cisco Catalyst 3750G-16TD

Cisco 7604 Cisco 7604

UCLP CLIENTSUCLP SERVER

10GigabitEthernet

GigabitEthernet

Management connection

(Fast Ethernet)

Internet

PEGASUS

SCORPIUS.I2CAT.NETIP: 192.168.114.9

CAPRICORNUS.I2CAT.NETIP: 192.168.114.5

Cisco Catalyst 3750G-12S+

Cisco Catalyst 3750G-16TD

Cisco Catalyst 3750G-12S

LIBRA.I2CAT.NETIP: 192.168.114.12

ARIES.I2CAT.NET IP: 192.168.114.4

TAURUS.I2CAT.NET IP: 192.168.114.3

VIRGO.I2CAT.NET IP: 192.168.114.2

LEO.I2CAT.NETIP: 192.168.114.11

AQUARIUS.I2CAT.NETIP: 192.168.114.10

HEAnet’s UCLP Project Testbed

15

HEAnet’s UCLP GUI

• Java GUI via WEB to manage the resources and create connections

16

HEAnet’s UCLP Screenshots

• Create connection dialog

GUI, Create an ERS connection with vlan 54

17

HEAnet’s UCLP Screenshots

• New UCLP Service (Vlan Manager)

Used vlans

Suggest vlanSet vlan

Get new vlan

Release vlanCheck vlan

Vlan Manager

Free vlans

Query used Vlans, Vlan Manager

18

HEAnet’s UCLP Screenshots

• UCLP Configtool Improvements

SCS Configuration, Cisco Catalyst 3750G-12S, EDI

EDI Server Configuration

19

HEAnet-CTVR-i2CAT international demo

An international demo between i2CAT and HEAnet was held. It consisted on the establish-ment of an optical circuit between Barcelona and Dublin using Glimmerglass optical switches to show UCLP controlling resources in distributed networks over the Internet.

20

CTVR tests• Optical IP Switching (OIS): to adapt the optical layer topology to the traffic encountered at the IP level. An OIS node analyzes the IP traffic and creates optical cut-through paths between its upstream and downstream neighbours, whenever a suitable aggregate of IP flows is detected

• Test to use a provisioning tool like UCLP to interconnect different domains together. OIS acts as the client of the UCLP network, requesting dedicated connections linking different OIS clouds, to dynamically accommodate aggregates of IP traffic flows. •CTVR developed a tool that allows the OIS node to login into the UCLP server and request the UCLP topology through the GSAP module. The node uses this information to associate every UCLP node with the IP destination prefixes it advertises.

•Whenever a suitable traffic aggregate towards a specific destination is encountered at the IP layer, the OIS protocol requests a direct optical link to the UCLP server towards the selected UCLP node to enter the desired OIS domain, routing the flow aggregate into the newly established optical path.

21

CTVR-HEAnet-i2CAT test I

22

CTVR-HEAnet-i2CAT test II

23

CTVR-HEAnet-i2CAT test III

24

UCLP-HEAnet Contact

• For more information please visit: www.i2cat.net / www.uclp.ca

• Contact: – Victor Reijs (victor.reijs@heanet.ie)– Sergi Figuerola (sergi.figuerola@i2cat.net )

• Phone: +34 93 553 25 15