GANT now and next steps

1
GÉANT now and next steps

• NORDUnet 2002 Conference
• Copenhagen 15th of April 2002

Agnes Pouele, Network Engineer DANTE
2
Agenda

• Introduction to GÉANT
• GÉANT topology
• GÉANT peerings
• GÉANT services
• Multicast
• IP premium
• Other activities
• Long term views

3
Introduction to GÉANT

• GÉANT is a 10 Gbps Pan-European Network that
  supports the development activities of the
  European National Research Education Networks
  (NRENs)
• GÉANT was launched in December 2001 and is the
  successor of TEN-155

4
Estonia
Latvia
Lithuania
Slovak Rep.
Romania
Israel
Cyprus
5
GÉANT Topology

• We have currently 19 PoPs across Europe
• 2 New PoPs under construction Israel and Croatia
• Trunks
• 9STM64 in West of Europe
• 12STM16 in West and East of Europe.

6
GÉANT Topology

• Accesses to GÉANT
• 12 connections at STM16 POS capacity
• 10 connections lt to STM1 capacity

7
GÉANT Topology
8
GÉANT Connections

• 27 National network research peerings

9
GÉANT Research Interconnections
CAnet
Esnet
STM-4
Abilene
GTREN
www.dante.net/nep/gtren.html
DFN
STM-16
GÉANT AS20965
JANET
UK
DE
NREN2
NREN4
...
...
GTREN is the Global Terabit Research Education
Network initiative of DANTE and UCAID to
establish an intercontinental network connecting
the various regional research networks.
10
Future Connectivity

• EUMEDConnect Project (36 months)
• Part of the Euro-Mediterranean Information
  Society (EUMEDIS) initiative
• EuropeAid (EC) funded programme
• Beneficiaries are most of the North Africa and
  Eastern Mediterranean states
• EUMEDConnect aims to provide the necessary
  network infrastructure
• Will provide intra-regional connectivity and
  connectivity to GÉANT
• Phase 1 (until end of April)

11
Future Connectivity

• Caesar project
• Same type of project but for South of America

12
GÉANT Services

• GÉANT Standard IP Service
• Ip traffic from NREN to NREN (About 27 countries)
• IP traffic from NREN to Research Peerings
  (Abilene, Canarie, Esnet, NII ..)
• Commodity peerings
• Commodity IP users to Commercial Peerings
  (KPNQwest, Global Crossing, Infonet)

13
GÉANT Services

• Multicast Service
• Multicast is enabled for all the NRENs and
  Research Peerings
• Replacement of the Managed Bandwidth Service
• Premium IP Service (End to End Service for low
  Delay, low Jitter, negligible loss).
• VPN layers 2

14
GÉANT Services

• Upcoming New Services
• Security and Dos attack detection
• IPV6

15
GÉANT MULTICAST SERVICE www.dante.net/nep/GÉANT-M
ULTICAST/
16
Coverage

• GÉANT is a transit domain for Multicast traffic
  as well.
• 24 NRENs over 27 have explicitly asked for being
  enabled multicast
• Fully enabled with the Research peerings

17
Access to the Service

• Via the primary access to GÉANT
• Via a GRE tunnel (currently nobody)
• Support of PIM-SM v2 only
• MBGP/MSDP/PIM-SM v2 peering

18
Operational procedures

• Currently under definition
• Goal fully supported service as Unicast.
• Monitoring of the infrastructure via a set of
  adapted tools.
• Beacon Matrices
• http//beaconserver.GÉANT.net9999/
• http//beaconserver.GÉANT.net19999/
• Looking glass gt http//www.dante.net/nep/lg/
• Others (volume, MSDP, MBGP )

19
Operational procedures

• Troubleshooting
• Extension of the trouble ticket systems to
  multicast incidents
• Establishment of a database of Incidents
• Sanctions for mis-behaving customers ...

20
IP PREMIUM SERVICEhttp//www.dante.net/sequin/
21
IP Premium Service

• This service which is currently being piloted in
  GÉANT has the aim to provide international
  Virtual leased line based on Diffserv.
• The Premium IP service is an end-to-end service
  (University to University) crossing multiple
  administrative domains
• It is defined on the basis of the Diffserv
  Expedited Forwarding Per Hop behavior which is
  required to offer
• Bandwidth, low loss, upper bounded delay and
  jitter

22
IP Premium model

• Premium IP packets are tagged with DSCP code 46
  at the entrance of GÉANT Domain.
• Rate Limitation is applied per aggregate on the
  NRENs access, based on the total demanded
  bandwidth towards the destination.
• Filters are made on two parameters (NRENs
  networks DSCP value)

23
IP Premium model

• Admission Control is made manually based on the
  Sum of bandwidth already booked on the
  destination access.

24
IP PremiumVirtual Leased Line service
SE
NREN Janet
UK
AS786
Rate limitation is applied on the NREN access
AS20965
GÉANT backbone
Regional Network
DE
DFN
A
AS680
Admission Control ? streams lt 5 of the BW access
FR
Regional Network
B
Tagging DSCP46
25
Premium IP tests

• H.323 (CH, IT, DE)
• AQUILA (IST) (AT, PL)
• MOICANE (IST) (IT, GR, PT, RO)

26
Other activitiesSecurity(http//www.dante.net/se
curity) dancert_at_dante.org.uk
27

• DANCERT (DANTEs Computer Emergency Response
  Team)
• Team responsible for defining and implementing
  DANTE security policy.
• DoS attack service protection
• Proactively through rate limiting and
  anti-spoofing measures.
• Reactively through DoS tools applying filters and
  helping report and investigate attacks.
• Assistance in investigating security incidents
  such as
• Hacking, Port Scanning, Spam reports

28
Other activitiesIPV6(http//www.6net.org)
29
IPV6 6NET project

• 36 Month project started in January 2002
• Participants
• Cisco (coordinating partner)
• DANTE (GÉANT), NRENs, other organisms
• Testbed for activities using/supporting native
  IPv6
• Interconnection of national IPv6 testbeds
• Support for applications which exploit IPv6 (eg
  mobile)
• Demonstration of complete native IPv6 stack

30
Planned Y1 6NET topology

• Native STM-1line to Greece under negotiation
• International IPv6 connectivity provided by
  partners including DANTE to NACSIS

Testbed for activities using/supporting native
IPv6
31
GÉANT Long term views

• Upgrade of the core network from 10 Gbps to 40
  Gbps.
• With one Lambda?
• With several Lambda's?
• Provisioning of Soft permanent channels to build
  Virtual Optical Private Network

32
Thanks

• Questions ?