Download ppt - VPNs in GÉANT2

Connect. Communicate. Collaborate

VPNs in GÉANT2

Otto Kreiter, DANTE

UKERNA Networkshop 344th - 6th April 2006


Agenda

1. Brief presentation of GÉANT2

2. IP/MPLS VPN services inherited from GÉANT

3. Optical VPNs in GÉANT2


What is GÉANT2?

A European R&E Networking Model:

• 7th generation of pan-European research network infrastructure – continuation of a success story

• Project partners include 30 of Europe’s national research and education networks (NRENs), DANTE and TERENA

• Will connect 34 European countries and serve over 3500 research and education establishments across Europe

• Provides international connectivity to other world regions• Funded jointly by NRENs and European Commission• Project timescale September 2004 - August 2008


GÉANT2 Topology


GÉANT2 Objectives

• Provide a gigabit-speed infrastructure to support European research and education

• Deploy an international hybrid network: routed IP traffic combined with switched point-to-point circuits

• Implement end-to-end QoS provision

• Provide a research infrastructure for network technology developments

• Develop a wider range of network services– Performance monitoring– Security– Bandwidth on demand– Testbed facility– Mobility and roaming


Services inherited from GÉANT

IP Services using Juniper routers.

– Native Best Effort IPv4– Native Best Effort IPv6– Native Multicast v4 – Native Multicast v6– QoS Services

• Premium IP - PIP• Less than Best Effort IP - LBE


Services inherited from GÉANT

MPLS services– L2-VPNs

• Started with Juniper CCC, “migrated” to LDP signalled L2-circuits

• Multi-domain and multi-vendor L2-circuits in place. – Traffic engineered paths

• To enforce QoS• Part of multi-domain L2-VPNs

– Stitching

– Contiguous LSPs


LSP Stitching

Pro: We are in control of the “transit” LSPCons: Done manually at the GÉANT/GÉANT2 border

– Not flexible– Error prone

Multi-domain LSPs - I

Manual stitching point

Needs to know internal structure of transit domain

A B

Connect. Communicate. CollaborateMulti-domain LSPs - II

Contiguous LSP

Pro: Easy to configure it

Cons: Hard to enforce any policy– TE across transit domain

– Bandwidth reservation across transit domain

– Possible solution nesting.

Needs to know internal structure of transit domain

A B

Traceroute AB

Connect. Communicate. CollaborateMulti-domain LSPs - III

LSP nesting

A B

Needs to know IN/OUT of transit domains

C

Bandwidth constraints

Pro: We are in control of the “transit” LSPsCons: Not known yet !

Connect. Communicate. CollaborateIP/MPLS services

• GÉANT2 will continue to provide the same IP/MPLS and L2-VPN services.

• Subsequently will look into possibilities to improve it• LSP nesting.

• Looking forward to deploy “new” services if they are required by the R&E community.

• L3-VPNs• VPLS• Point-to-Multipoint LSPs

Connect. Communicate. CollaborateOptical VPNs in GÉANT2

Requirements of BoD services:

• Deterministic bandwidth• Deterministic delay• Ethernet• Automated provisioning• Advanced reservation (?)

Solution “Optical” VPNs.

Connect. Communicate. CollaborateTechnological domains Connect. Communicate. Collaborate

IP/MPLS

SDH/EoSDH

Ethernet

Europe


GÉANT2 technological domains Connect. Communicate. Collaborate

SDH10GE1GE


GÉANT2 technological domains Connect. Communicate. Collaborate

SDH10GE1GE

Domain B

Domain A

VLANsGFP-FVCAT

VC-4 hand-over point

NMS

GFP-FVCAT

?

?


GMPLS the solution for Optical-VPNs ? Connect. Communicate. Collaborate

e2e pathEthernet LSPSDH LSP

Domain B

Domain A

GMPLSGMPLS

GMPLS

Connect. Communicate. CollaborateGMPLS in GÉANT2

GÉANT2 OXC

Alcatel 1678MCC

GMPLS Interface Switching Capabilities:– TDM– Ethernet L2SC

GMPLS control plane available for the TDM region

Connect. Communicate. CollaborateWhat is missing…

GMPLS controlled Ethernet Label Switching

A single GMPLS control plane instance for multiple regions (TDM and Ethernet) Multi Region Network – Would be nice to have "triggered signalling" for lower

layers.


They will form two separate service layers at the beginningThey may form a global TDM and packet (Ethernet/IP) traffic

engineering database in the future.

Where the GÉANT2 IP/MPLS network fits in this picture ?

NREN NREN

Connect. Communicate. CollaborateConclusion

GÉANT2 will continue to provide L2-VPN services in the IP/MPLS network.

New emerging inter-domain MPLS techniques to improve L2-VPN deployments.

GMPLS seems to be an answer for Optical-VPNs in GÉANT2 in support of BOD activities.