China Science & Technology Cloud Testbed

Yongmao Ren, Jun Li, Lingling LiCSTNET, CNIC

Feb. 20, 2019

Outline

CSTCloud-Testbed Design1

Experiments & Applications2

CSTNETCSTCloud• Provide advanced information technology test environment,

serve advanced technology innovation experiment.• Carry out new technology test and application, enhance the

service quality of “CSTCloud”.

多终端融合通信

信息资源池

软件资源池CSTCloud

CSTNETCSTCloud

Update the network infrastructure, transfrom from network to cloud Build 10G/100G high-speed network Integrate multiple kinds of resources User self-service

International connectivity

Update outbound BW Update existing BW Increase connectivities

Join the GRP Share resources Support big scientific data

CSTCloud-Testbed

Purposes of CSTCloud-Testbed Provide a testbed for new technologies Provide on-demand dynamic virtual network slices Test new big data transfer technologies

Design of Testbed Architecture

Figure: The Overall Structure of the Test Environment

Build infrastructure based on CSTCloud

Implementing network slices by SDNUser-defined cloud network

Scientific big data transmission test

Network and information security test

Future network technology test

Physical network

5G network technology testVirtualiza

-tion testlayer

STCloud infrastructure

layer

Applicationtest layer

Content networktest

Systemplatformlayer

Manage control system

Network and informationsecurity test

Measurem

ent and analysis techniques

Testbed safety mechanism

Scientific big data transmission test

Future networktest

Inter-connection

CSTCloud SDN Testbed

Proposed SDN Testbed node locations

Proposed SDN Testbed connectivity overlay

CSTCloudRouter

Testbed Host

SDN Switch

Design of Testbed System Architecture

slice1

slice2

slice3

node1

node2

node3

site1

site2site3

site4site5

component

componentcomponent

component -> node -> site -> slice

Combination of centralized management of public resources and partial autonomy of site resources

Key Technology of Testbed

• Network Slicing Technology

VirtualizationNetwork Slice Implementation of Network

Slicing Technology based on FlowVisor

• Define the available resources for each slice by policy:– Link bandwidth– Maximum number of forwarding rules– Topology– Fraction of switch/router CPU

Research and Development of Testbed Node Equipment

• Research and Develop Testbed Network Key Node Equipment

Testbed Node Equipment R&D

We developed a novel network virtualization switch (2014) SmartFlow

– Support openflow 1.2– Layer 2 Tunnel added– QoS function added

Deploy at 15 nodes in 7 cities, build a virtualized network

Testbed Management and Service System

SC-TB Portal

ControlCenter

ResourceSites

Test measurement subsystem

Resource management subsystem

Testtopology

Testcontrol

Resourcemanage-

ment

Certificati-on

authority

Site manager

Resource management

module

Test measurement

module …….Site manager

Test measure-

ment

Test service subsystem

Outline

CSTCloud-Testbed Design1

Experiments & Applications2

Realize flexible transform between IPv4/IPv6

Realize network load balance

网络负载重

网络负载轻

IPv4

Payload

IPv4

Payload

IPv6

视频服务器

视频客户端

IPv4

Payload

Transform Node：OpenFlow switch

Controller：OpenFlow controller

SDN based Experiment

Experiment on Innovative Technology based on TestbedCarry out Future Network Technology Test

Enhance the Efficiency of Scientific Data TransmissionBased on the technology architecture of SD-WAN, carry out traffic scheduling in the WAN environment, transmission optimization test, enhance the performance of long-distance transmission of scientific data.

Based on the technology architecture of NFV, optimize network performance and security feature deployment, Enhance the efficiency of STCloud operation and management.

Figure: Using SD-WAN technology to optimize scientific data transmission performance

SD-WAN Based Transfer Optimization

• SmartCloudWAN System• Use SD-WAN to control WAN BW and routing

Terminals

SmartCloudWANController

CPE

CPE

CPE Edge Access Devices

SmartCloudWANScientific Data

SmartCloudWAN System

• Easy deployment

• Support Multiple Types of CPEs

MiFi Portable Mini Router

USB Wireless Router

DesktopSwitch

SmartCloudWAN System

• Experiment Results• Transfer bulk biology data Between BJ and NIH in US

The WAN download rate has been improved 66%

Common Internet Access:

average download rate, 750KB/s

SmartCloudWAN Access：

average download rate, 1258KB/s

Sci-SDN-DMZ

• We has proposed a scientific DMZ network architecture based on SDN named Sci-SDN-DMZ

• It uses SDN to flexibly schedule the scientific data flows to the Science DMZ bypass the security devices in order to guarantee the bulk scientific data transfer performance.

Security DeviceZone

…

PerformanceMonitor

Science DMZ Zone

SDN Switch

SDN Controller

Data Flow

Scientific Flow

Common Flow

DTN

WANLAN

IDSFirewall

Sci-SDN-DMZ

• Experiment Results

• For more details, please refer to our paper:• “Research and Implementation of Science DMZ Based on Software Defined

Network”, to appear soon

RTTs with different sizes of ICMP packets

RTTs with different link loads HTTP request response time

International NDN Testbed

CNIC has built an NDN node connecting to the global NDN TestbedNDN: Named Data Networking

We plan to experiment with NDN for big scientific data transfer

Typical Application—SDN for e-VLBI

KM SH

Controller

VLBICenter

UR BJOpenFlow

User’s service request

OpenFlow

OpenFlowOpenFlo

w

China-Korea Joint Project

• Jointly Supported by NSFC and NRF • Collaborate with KREONET/KISTI• China-Korea Software-Defined Inter-Connections for Big

Scientific Data Transfer based on CCN

THANKS !renyongmao@cstnet.cn