Applications of MPLS in GANT

1
Applications of MPLS in GÉANT
MPLS WORLD CONGRESS 2002 Paris 7th February 2002
Agnes Pouele, Network Engineer DANTE
1
2
Agenda

• Overview of GÉANT
• GÉANT Services
• GÉANT and Traffic Engineering
• GÉANT TE and OSPF Metric
• Replacement of TEN-155 MBS Service
• The TEN-155 MBS Service
• GÉANT Premium IP Service
• Alternative solutions with MPLS
• Enforcement of the Premium IP Service with MPLS
  TE
• The Virtual Lab Service
• Conclusion

2
3
Overview of GÉANT

• DANTE
• DANTE plans, builds and manages advanced network
  services for the European RE community.
• GÉANT
• GÉANT is a 10 Gbps Pan-European Network, it
  supports the development activities of the
  European National Research Education Networks
  (NRENs)
• GÉANT has been launched in December 2001 and is
  the successor of TEN-155.

3
4
GÉANT Services

• GÉANT Standard IP Service
• IP traffic from NREN to NREN (About 30 countries)
• IP traffic from NREN to Research Peerings
  (Abilene, Canarie, ESnet, NII ..)
• Multicast Service
• Multicast is enabled for all the customers and
  Research Peerings
• Replacement of the Managed Bandwidth Service
• Premium IP Service (End to End Service for upper
  bounded Delay, upper bounded IPDV, negligible
  loss).
• Layers 2 VPN
• Upcoming of New Services
• Security and Dos attack detection
• IPv6 (Pan-European IPv6 test pilot network)

4
5
5
6
GÉANT Services

• GÉANT Standard IP Service
• IP traffic from NREN to NREN (About 30 countries)
• IP traffic from NREN to Research Peerings
  (Abilene, Canarie, ESnet, NII ..)
• Multicast Service
• Multicast is enabled for all the customers and
  Research Peerings
• Replacement of the Managed Bandwidth Service
• Premium IP Service (End to End Service for upper
  bounded Delay, upper bounded IPDV, negligible
  loss).
• Layers 2 VPN
• Upcoming
• Security and Dos attack detection
• IPv6 (Pan-European IPv6 test pilot network)

6
7
GÉANT and Traffic Engineering

• GÉANT is currently an over-provisioned backbone.
• It doesnt need MPLS-TE for splitting the traffic
  load among the trunks at its beginning.
• We are using OSPF metrics to influence the path
  taken by the IP traffic from each entrance to
  each exit point.
• The use of OSPF metrics is quite simple but has
  some limitations in terms of scalability and TE

7
8
GÉANT TE OSPF Metric
9
Replacement of TEN-155 MBS Service

• TEN-155 was an IP network built on ATM STM1
  trunks upgraded in year 2000 at 622 Mbps.
• The TEN-155 Managed Bandwidth service provided
  International test-bed with QoS.
• The platforms were built with ATM VPs or PVCs
  with different classes of service (UBR, CBR).
• The test-beds were extended in each NREN backbone
  with the extension of the virtual connections

9
10
MBS service from TEN-155
TEN-155 backbone
NL
NREN Janet
UK
AS786
AS8933
Regional Network
DE
DFN
A
AS680
FR
MBS service ATM connection across NRENs and
TEN-155
Regional Network
B
10
11
GÉANTPremium IP Service

• The Premium IP service is an end-to-end service
  (University to University) crossing multiple
  administrative domains
• The model is based on a combination of
  edge-to-edge services offered by each domain.
• This service which is currently being piloted in
  GÉANT has the aim to provide international
  Virtual leased line based on Diffserv.
• It is defined on the basis of the Diffserv
  Expedited Forwarding Per Hop behavior which is
  required to offer
• Bandwidth, low loss, upper bounded delay and
  jitter

11
12
Premium IPVirtual Leased Line service
SE
NREN Janet
UK
AS786
AS20965
Rate limitation is applied on the NREN access
Regional Network
DE
GÉANT backbone
DFN
A
AS680
FR

• Premium IP packets are tagged with DSCP code 46
• Rate Limitation is applied per aggregate on the
  NRENs access, based on the total demanded
  bandwidth towards the destination.
• Admission Control is made manually based on the
  Sum of bandwidth already booked on the
  destination access.

Regional Network
B
12
13
Alternative solution with MPLS GÉANT Premium IP
service and MPLS TE

• MPLS TE can enforce this service by providing
  the best TE path across the network.
• Lowest Delay independently of OSPF metric
• Low loss with the use of Backup LSPs
• The LSPs can carry the aggregate Premium IP
  traffic and can be provisioned on demand
• We dont necessarily need to establish a full
  mesh. It depends on the number of participants
• The bandwidth of the LSPs reflects the total
  amount of booking of Premium IP from one NREN to
  another one.

13
14
Alternative solution with MPLS GÉANT Premium IP
and MPLS TE
SE
NREN Janet
UK
AS786
LSP UK-SE
Rate limitation is applied on the NREN access
LSP DE-UK
Regional Network
LSP FR-UK
DE
AS20965
DFN
A
AS680
FR
GÉANT backbone
Regional Network
B
14
15
Alternative solution with MPLS GÉANT Premium IP
and MPLS TE

• Forwarding of Premium IP only into the LSPs.
• CoS and destination Based Forwarding
• Admission Control
• On the core
• Automatically done by RSVP-TE.
• This Admission Control will permit to control the
  booking of Premium IP per link in the core and
  avoid overload in the case of re-routing.
• On the Access
• Still Manual but can be automated by monitoring
  the ? of tunnel BW landing on each exit point

15
16
Alternative Solution with MPLS The Virtual Lab
Service

• Definition
• The customers of MBS were using this service for
  the guaranteed BW and for the ability to have a
  Layer 3 network independent of the production
  traffic on TEN-155. The models discussed
  previously cant provide isolation.
• Thus a second service is under study for the
  provisioning of VPNs.
• This service is called the Virtual Lab Service.

16
17
The Virtual Lab ServiceOverview

• The Virtual Lab Service allows the construction
  of international test-beds.
• The service itself will be limited, in the
  beginning, to the core backbone.
• This service is based on point-to-point
  connections of layer 2 encapsulated into MPLS.
• Proprietary Encapsulation
• Draft-Kompella-ppvpn-l2vpn-01.txt

17
18
The Virtual Lab ServiceOverview

• On the core side the virtual connection will be
  carried out by MPLS TE
• On the access side two types of access are
  defined
• Shared access
• IP traffic and Virtual lab traffic are on the
  same physical link separated at layer 2 by
  virtual channel
• POS STM16 FR-DLCI
• ATM PVCs
• Dedicated access
• Any layer 2

18
19
The Virtual Lab ServiceExample of Virtual
platform
In the core
GÉANT backbone
Encapsulation Layer2 lt-gt MPLS
MPLS traffic
IPV4 traffic




LSPs
NREN A
NREN C
Dedicated access STMxx to STM16 POS
DLCI Virtual Lab access
DLCI Production traffic access
GÉANTs router
Shared media access (up to STM16 POS)
NREN B
NRENs access router
Dedicated access (up to STM16 POS)
NRENs test router
19
20
The Virtual Lab ServiceDifferent Options

• Different options for the Virtual lab
• With QoS
• Queuing of MPLS packets with Experimental CoS
  bits marked
• Use of WRR in the core (For now not needed)
• Use of Rate limitation on the access
• With Backup LSPs
• To protect sensitive application (low loss)
• Monitoring via SNMP per virtual lab.
• Monitoring of each trunk (LSP) per VL
• BW usage ..

20
21
The Virtual Lab Service Inter-domain extension
GÉANT backbone
PE1
MPLS VPN layer 2
GRE TunnelsLSP or UTI
MPLS VPN layer 2
PE2
PE4
PE/CE
NREN A
NREN C
Interworking area
PE
Interworking area
Regional Network
Regional Network
PE3

• Delivery to the regional
• network of a DLCIs

ATM access
NREN B
LSPs
ATM Backbone
ATM PVCs
Regional Network
DLCI Production traffic access
GÉANTs PE

• Delivery to the regional
• network of ATM PVCs

DLCI Virtual Lab access
NRENs PE
Shared media access (up to STM16 POS)
21
22
The Virtual Lab Servicenext step

• Definition of the service
• Still under discussion
• Limitations
• Interoperability
• Number of Virtual platform which can be supported
  ?
• Extension to NRENs core backbone
• Obvious for the NRENs which are still in ATM
• To be investigated for pure IP backbone

22
23
Conclusion

• GÉANT and MPLS-TE for IP production traffic
• Altought GÉANT looks over provisioned in the
  medium term we expect an exponential growth in
  the usage of BW.
• Replacement of the MBS service
• MPLS Layer-2 VPNs Traffic Engineering
  associated with Diffserv are keys to the
  deployment of the advanced services needed by the
  Research Community.

23
24
Thanks

• Questions ?

24