DREN Overview

Phillip DykstraChief Scientist

WareOnEarth Communications Inc.phil@sd.wareonearth.com

JET Workshop13 April 2004

DREN

• Part of the High Performance Computing Modernization Program (HPCMP)

• Serves Science and Technology (S&T) and Modeling and Simulation (M&S)

• Connects four Major Shared Resource Centers (MSRC) and numerous Distributed Centers (DC)– Over 40 TFLOPs of computing resources

DREN Map

DREN Map2

DREN Future Sites

DREN IPv6 Map

OC-3

OC-3

Morrow Bay

Hillsboro, OR

(Japan-US)

(Southern Cross)

MHPCC

PMRF

U of HI

Pearl City

DREN

DREN

HAY

PNG

vBNSOC-48

vBNSOC-48

= U of HI Router (Not Managed by DREN)

= DREN Routers to be Managed by MCI NOC

Legend

= DCN Router

NCTAMs

OC-3GIG-EDCN

M20

Internet

DREN and UH Collaboration

DREN and NASA Collaboration

MOONv6 ArchitectureHigh Level Architecture

UNH InteroperabilityNetwork

(Edge Network)

DISN-LES

ScottAFB

Router

Army TICTest Network

Ft MonmouthTest Network

Scott AFBTest Network

MCNOSCTest Network

Ft MonmouthCERDECRouter

Ft MonmouthCell 1 Router

ARMY TICRouter

CiscoGSR

JITC

OC3 ATMMulti Mode

OC3 ATMMapped PVCs

Sunnydale CA andSeattle WA

Fast Ethernetvia fiber

Internet 2

SPAWARCharelston

Router

NASAAmes

PAIX

LAIX UCSD

NYIX6STARTAP UNH

JITC I.H. DCTS

Test Network

DRENATM

Router

JITCRouter at

Indian Head, MD

MCNOSCRouter

SPAWAR TestNetwork

SPAWARWest

JITC InteroperabilityTest Network

(Edge Network)

Cisco IOSFirewall

DREN IPv6Network

DoD IPv6 PilotsSystem Transition Schedule

FY05

FY04

FY06

FY07

FY08

GIG-BE(Secret, SCI)

NIPRNET DCTS CITS NCES

DREN DISN-LES

NMCI

GSRNet

GCSS GCCS

SIPRNET ICE2 DCGS CHCS

Network Application

WARP

GNCST

Net-BLTSNORA

JIVA BCT

Everyone

GBS

DREN Contract

• Awarded to MCI, June 2002• 3 years + 7 option years• Transition from AT&T Jan – Jun 2003• DS3 through OC192 +• MPLS VPN over the vBNS+ core• IPv4, IPv6, ATM services

Service Delivery Points (SDP)

• Interface between site and DREN WAN• Juniper M-series router

– IP and/or ATM over MPLS– “one box solution” I.e. no ATM switch

• Optional items– Network Intrusion Detection (NID)– AMP Performance Monitor– ATM and/or IP encryption

HSJRTO

HAY

SEJ

DNG

WAE

NAP

NAP

NAP

I

NAP

I

I

I

NAP

I

= DCN Router

= DCN ATM Switch

= NAP Peer Location

= Internet Transit

Legend

DREN Core Nodes (DCN)

Why ATM?

• Secret+ encryption at wire speed• VPN’s (incl. multicast and broadcast!)• QoS• Traffic Engineering• Circuit Emulation• Special VTC applications

Why MPLS?

• Allowed ATM over IP– But without QoS

• Alternate solution to several VPN and Traffic Engineering uses of ATM

Are Light Paths the Answer?

• ATM and MPLS let us share bandwidth in the WAN (lower cost), lambda’s don’t

• Light paths could be ATM all over again– Didn’t connectionless win?

• Maybe just a step in getting telco stuff out of the way?

Micro Air VehiclesMicro Air Vehicles Joint Strike FighterJoint Strike Fighter

HPCMP ApplicationsHPCMP Applications

Surveillance SystemsSurveillance Systems

Smart Weapons DesignSmart Weapons Design

Unmanned Air VehicleUnmanned Air Vehicle

Blast ProtectionBlast Protection

Parachute SimulationsParachute Simulations

Ocean ModelingOcean Modeling

Network Stressing Apps

• Large File Transfer– Still the number one requirement

• Disaster Recovery (DR)– Remote site backup of supercomputer data

• Extreme Multicast– Thousands of groups that come and go very

quickly

ATM Teleconferencing

• Marconi Virtual Presence (ViPr)• High quality audio and video (MPEG2)• Stress tests the ATM over MPLS network

– Had to increase 1 msec CDTV in ATM switches

Security(incl IPv6 and wire speed)

• Encryption– ATM Fastlane (KG75) – wire speed to OC12– IP TACLane (KG175) – not wire speed– IPsec for unclassified

• Kerberos/SecurID infrastructure– kftp tools and Kerberized apps

• CAC Cards for PKI certificates• Network Intrusion Detection

DREN Timeline

2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012

MCI Contract

Workshop Scope

AT&T

IPsec

OC48OC192

OC12OC12

OC12OC48

OC192OC768

OC768Lambda?

SitesWAN

Video

IPv6 DoDIPv6 DREN

Network Speeds Over Time

100 kbps

100 Mbps

1970 1975 1980 1985 1990 1995 2000 200510 kbps

1 Mbps

10 Mbps

1 Gbps

10 Gbps

Ethernet

ARPANET / MILNET

FDDI

HIPPI-800 GigE

10 GigE

HIPPI-6400 / GSN

100 Ethernet

NSFNET

vBNS

~Computer I/O requirements

T1

T3

OC3

OC12

OC48