perf SONAR WG Meeting 06 FMM Jeff W

perf. SONAR WG Meeting (06 FMM) Jeff W. Boote Martin Swany Internet 2 6 Dec 2006

Overview • motivations/overview • NMWG Schema Overview (Martin Swany) • Discovery (Martin Swany) • Auth. N/Z • Current Status • Open Discussion Jeff W. Boote: 4 Dec 06

Vision: Performance Information is … • Available • People can find it (Discovery) • “Community of trust” allows access across administrative domain boundaries (AA) • Ubiquitous • Widely deployed (Paths of interest covered) • Reliable (Consistently configured correctly) • Valuable • Actionable (Analysis suggests course of action) • Automatable (Applications act on data) Jeff W. Boote: 4 Dec 06

Getting There: Build & Empower the Community Decouple the Problem Space: • Analysis and Visualization • Performance Data Sharing • Performance Data Generation Grow the Footprint: • Clean APIs and protocols between each layer • Widespread deployment of measurement infrastructure • Widespread deployment of common performance measurement tools Jeff W. Boote: 4 Dec 06

Result: No more mystery … • Increase network awareness • Set user expectations accurately • Reduce diagnostic costs • Performance problems noticed early • Performance problems addressed efficiently • Network engineers can see & act outside their turf • Transform application design • Incorporate network intuition into application behavior Jeff W. Boote: 4 Dec 06

perf. SONAR Overview • What: Measurement infrastructure for exchanging data under development • How: Webservices network performance framework • • • Network measurement tools Network measurement archives Distributed scheduling/authorization Multi-domain policy Common language (GGF NMWG Schema) • Where: Deployed / to be deployed across: • Network Backbones (Abilene, ESNet, GÉANT) • Regional Networks (NRENs, RONs, Gigapops) • Universities • When: First product release happened summer ‘ 06 Jeff W. Boote: 4 Dec 06

perf. SONAR: What is it? • Service Oriented Architecture (discovery, Auth. N/Z, federation…) • Base schema (NMWG) to allow any performance data type with a defined extensibility Jeff W. Boote: 4 Dec 06

perf. SONAR: Services (1) • Lookup Service • Allows the client to discover the existing services and other LS services. • Dynamic: services registration themselves to the LS and mention their capabilities, they can also leave or be removed if a service gets down. • Auth. N/Z Service • Internet 2 MAT, GN 2 -JRA 5 (edu. GAIN) • Authorization functionality for the framework • Users can have several roles, the authorisation is done based on the user role. • Trust relationships defined between users affiliated with different administrative domains. Jeff W. Boote: 4 Dec 06

perf. SONAR Services (2) • Transformation Service • Transform the data (aggregation, concatenation, correlation, translation, etc). • Topology Service • Make the network topology information available to the framework. • Find the closest MP, provide topology information for visualisation tools • Resource protector • Arbitrate the consumption of limited resources between multiple services. Jeff W. Boote: 4 Dec 06

Inter-domain perf. Sonar example Useful graph interaction Client Token MA I’d like to Here is who I am, I’d like to. MA A, AAHere is who I am, Token MBaccess MA B a, b, c : Network A, access MA A A Where Link utilisation along - Path a, b, c? Get Link utilisation a, b, c Get link Here you go utilisation c, d, e, f. AA AA A Here you go Network A –-LS A, a, b, c, d, e, f? B a, b, c: Where Link utilisation along Path c, d, e, f : Network B, MA B, AA B LS A a MA A LS B b f e c Network A MA B d Network B Jeff W. Boote: 4 Dec 06

Overview • motivations/overview • NMWG Schema Overview (Martin Swany) • Discovery (Martin Swany) • Auth. N/Z • Current Status • Open Discussion Jeff W. Boote: 4 Dec 06

perf. SONAR: Core Team Status Update • First production release of Java Sample Implementation (July 06) • Includes: • Single domain LS solution • RRD MA • Other closely integrated implementations/applications: • BWCTL MP • perf. SONAR UI Jeff W. Boote: 4 Dec 06

perf. SONAR: auth. N/Z plans • perf. SONAR(JRA-1)/JRA-5 sub-group • Group tasked with determining how to leverage JRA-5 authentication system (edu. GAIN) in perf. SONAR infrastructure • Jeff Boote (Internet 2) • Diego Lopez (Red. IRIS) • Maurizio Molina (Dante) • Andreas Solberg (Uninett) Jeff W. Boote: 4 Dec 06

Auth. N/Auth. Z Background • Designed with Federated authentication in mind • AS becomes a ‘proxy’ for Authorization requests Jeff W. Boote: 4 Dec 06

edu. GAIN: Background • JRA-5 provided authentication “interface” • Provides “bridging” to other authentication systems • Shibboleth • PAPI • Others… • Designed mostly with web-browser interaction in mind Jeff W. Boote: 4 Dec 06

Current Auth Status • Group has come to general consensus on how this should work Jeff W. Boote: 4 Dec 06

perf. SONAR: Trust relationship entities • Client • id. P (identity provider) • p. SR (perf. SONAR resource “service”) • AS (perf. SONAR AS service) • HLS (Home Location Service) Jeff W. Boote: 4 Dec 06

Automated Client Interaction Jeff W. Boote: 4 Dec 06

Normal User Interaction Jeff W. Boote: 4 Dec 06

Overview • motivations/overview • NMWG Schema Overview (Martin Swany) • Discovery (Martin Swany) • Auth. N/Z • Current Status • Open Discussion Jeff W. Boote: 4 Dec 06

perf. SONAR: Current Developments • MPs • SSH/Telnet (Looking Glass) • ABW (bandwidth packet capture cards) • BWCTL • NMS (SDH status) • SNMP • Command line (OWAMP, Ping, Traceroute) • MAs • • • RRD SQL Top. S BWCTL Hades (owd, jitter, owp) Flow replicaton (CARNet) • Hybrid MP/MA • Link Status • Visualization Clients • • CNM perf. SONAR UI Visual perfsonar Looking glass Jeff W. Boote: 4 Dec 06