•UNH network currently supports a 2.5 gbps network on campus. •This network services thousands of users a day, and must be secure. These security measures (firewalls, IDPS, IPS, etc.) bog down the network and reduce the actual throughput. •UNH is building a Science DMZ with a theoretical 10 gbps throughput. •DMZ stands for “Demilitarized Zone”. This type of network acts as a neutral zone between a company’s private network and the public network. A DMZ doesn’t have security measures such as firewalls or IDPS’s that will bog down the performance like a normal network contains. •Due to the nature of a DMZ network, large files will be able to be transferred quickly and easily without this decrease in network performance. Introduction Introduction to perfSONAR Testing / Results Analysis Future Workings •perfSONAR is a collaborative, open source network monitoring tool. •perfSONAR will be installed and configure on the existing UNH network, as well as the Science DMZ once it is officially deployed. •This software is used to monitor networks and collect data about these networks, such as throughput and latency. •perfSONAR works by connecting to one of the many perfSONAR nodes throughout the world and running tests (such as BWCT, iPerf3, OWAMP, etc.) in order to gather the necessary network information. •Once this information is gathered, perfSONAR allows you to render graphs with this information over various lengths of time, allowing you to find troublesome areas or time intervals where there might be bottlenecks or periods of increased usage that will cause a decrease in network performance. • The graph on the left represents tests on the same RCC subnet that hosts our perfSONAR node for the tests, so the 1 Gbps rate is nearly achieved and is demonstrated accurately in our results. • The second graph on the right shows slightly slower results due to the fact that the RCC subnet is located outside of UNH's firewall. The reduction in throughput is associated with the slow down from having to reenter the UNH network through the firewall. • Future workings include testing on the Science DMZ during summer 2015 and confirming the theoretical higher performance of this network. perfSONAR and UNH’s Science DMZ Joseph Rogers | Brandon Schwarzer | Nicholas Turi | Advisor: Scott Valcourt Department of Computer Science and Information Technology, University of New Hampshire, Durham, NH Throughput >= 100Mbps Throughput >= 10Mbps Throughput < 10Mbps Unable to retrieve data BWCTL UNH Tester nautilis.sr.unh.edu perf-unh.unh.edu perfsonar- bmr.dartmouth.edu perfsonar.ucar.edu ps-1.oit.ummass.edu ps.ncsa.xsede.org UNH Teste r nautilis. sr.unh.edu perf-unh. unh.edu perfsonar - bmr.dartm outh.edu perfsonar .ucar.edu ps- 1.oit.umm ass.edu ps.ncsa.xsede.org BWCTL Figure 1: perfSONAR Node Deployment Figure 2: Throughput graph to pS node inside the same subnet Figure 3: Throughput graph to pS node inside UNH’s network Figure 4: Diagram of the current UNH network Figure 5: MadDash chart of the current monitored networks Figure 6: Traceroute graph to pS node inside UNH’s network (1am) Figure 7: Traceroute graph to pS node inside UNH’s network (9am)

UNH network currently supports a 2.5 gbps network on campus. This network services thousands of users a day, and must be secure. These security measures

Download PPT Report

Upload
tyrone-owens
View
214
Download
1

Tags:

Embed Size (px)

Citation preview

•UNH network currently supports a 2.5 gbps network on campus.

•This network services thousands of users a day, and must be secure. These security measures (firewalls, IDPS, IPS, etc.) bog down the network and reduce the actual throughput.

•UNH is building a Science DMZ with a theoretical 10 gbps throughput.

•DMZ stands for “Demilitarized Zone”. This type of network acts as a neutral zone between a company’s private network and the public network. A DMZ doesn’t have security measures such as firewalls or IDPS’s that will bog down the performance like a normal network contains.

•Due to the nature of a DMZ network, large files will be able to be transferred quickly and easily without this decrease in network performance.

Introduction

Introduction to perfSONAR

Testing / Results

Analysis

Future Workings

•perfSONAR is a collaborative, open source network monitoring tool.

•perfSONAR will be installed and configure on the existing UNH network, as well as the Science DMZ once it is officially deployed.

•This software is used to monitor networks and collect data about these networks, such as throughput and latency.

•perfSONAR works by connecting to one of the many perfSONAR nodes throughout the world and running tests (such as BWCT, iPerf3, OWAMP, etc.) in order to gather the necessary network information.

•Once this information is gathered, perfSONAR allows you to render graphs with this information over various lengths of time, allowing you to find troublesome areas or time intervals where there might be bottlenecks or periods of increased usage that will cause a decrease in network performance.

• The graph on the left represents tests on the same RCC subnet that hosts our perfSONAR node for the tests, so the 1 Gbps rate is nearly achieved and is demonstrated accurately in our results.

• The second graph on the right shows slightly slower results due to the fact that the RCC subnet is located outside of UNH's firewall. The reduction in throughput is associated with the slow down from having to reenter the UNH network through the firewall.

• Future workings include testing on the Science DMZ during summer 2015 and confirming the theoretical higher performance of this network.

perfSONAR and UNH’s Science DMZJoseph Rogers | Brandon Schwarzer | Nicholas Turi | Advisor: Scott ValcourtDepartment of Computer Science and Information Technology, University of New Hampshire, Durham, NH

Throughput >= 100Mbps

Throughput >= 10Mbps

Throughput < 10Mbps

Unable to retrieve data

BWCTL

UNH Testernautilis.sr.unh.eduperf-unh.unh.edu

perfsonar-bmr.dartmouth.eduperfsonar.ucar.edu

ps-1.oit.ummass.edups.ncsa.xsede.org

UNH Tester

autilis.sr

.unh.edu

perf-