Embed Size (px)
Citation preview
BUCKNELL’S SCIENCE
DMZ
#Bisonet
Param Bedi
VP for Library and Information Technology
Principal Investigator
Initial Science DMZ Design
• Process Involving
– Bucknell faculty researchers
– Library and Information Technology
• Digital Pedagogy and Scholarship
• Identified Issues included
– Known challenges with transferring and working with files
especially for students
– Opportunities to share files securely with external third parties
– Prepare for increasingly larger data sets (up to 20 Tb)
• Proposed Solution
– Co-located primary research assets in new Science DMZ
– Provided for simple transfer capabilities with GridFTP/Globus
Where are we now?
• Finalizing design and capabilities focused on data management
– Likely 40 Gbps Science DMZ Design supporting co-location of research
environments
– Tiered storage management designed to facilitate data management and
collaboration between researchers and the cloud• GridFTP / Globus for external collaboration
• Swift Object Storage for research file storage and data management
• Elastifile for management of cloud storage needs
– Additional High Performance Compute capabilities to meet growing needs
– Identifying opportunities for better use of hardware during idle periods (typically
school year)
– Investigating deploying Virtual Desktop Infrastructure (VDI) in Science DMZ
– Working with selected vendor to leverage outside expertise (Cisco)
– Four node PerfSonar deployment for performance measurement
NSF Campus Cyberinfrastructure PI and Cybersecurity Innovation for Cyberinfrastructure PI Workshop
October 3-4, 2017 | Albuquerque, NM
Broader Impact:
• Improvements for student centered research opportunities
• Improved foundation for data management plans
• Improved opportunities for internal and external collaboration
Deliverables:• Dedicated 40 Gb Science DMZ
Network
• Data driven design in support of research needs
• Cloud expandability
• Reduction of Network Attached Storage (NAS) devices
• VDI services in research
Challenges:• Data movement: Create a high-speed,
internally and externally integrated network for research and learning
• Data Management: Integrate a Data Transfer Node, HPCC, other data-intensive systems (GIS), and non-NAS storage options into the design
• Resource Constraints: Enable greaterflexibility through cloud options
Metadata tag:
• bucknell.edu/lit
• @BucknellLIT
• #BISONet
• KINBER.org
• Geisinger.org
Quad Chart for: The Bucknell Science DMZ Network Design and Implementation(BISONet – Bucknell Integrated Scholarly Optical Network)
Core Core
FW FW
ASR1002-HX ASR1002-HX
Science DMZ
Science DMZ
Agg
rega
tio
n Sw
itch
Extended Lab Switch
Remote Labs
HPCC
ARC-GIS
GRIDFTP (GLOBUS)
SAN
EXISTINGBUCKNELLNETWORK
KINBER(Internet & I2)
Science DMZ
Goal: create a high-speed, independent network for research
Cisco Components: Nexus (switch), ASR (route), UCS-C
(DTN)
Other Components: Globus, perfSONAR
Benefits
• Research traffic no longer competes with general
traffic
• Security restrictions will not slow data and research
• Internal and external collaboration will be faster and
easier
HPC/Research Computing
Goal: improve performance for research compute resources
Cisco Components: UCS-B (CPU cluster), UCS-C
(GPU/storage cluster)
Other Components: Elastifile, Bright (Cluster Management)
Benefits:
• Higher performance file/storage IO
• Faster access to large datasets (EX: for in-class use)
• GPU-enabled research (EX: machine learning)
Object Storage
Goal: Centralize and consolidate disparate storage and back-
up
Cisco Components: UCS-S (storage server)
Other Components: SwiftStack
Benefits
• Cost-effective storage for second-tier research storage
• Back-up and archive target for business/academic systems
• Built-in redundancy and resiliency to mitigate DR risk
Virtual Desktop Infrastructure
Goal: deliver flexible access to research, resources and
applications
Cisco Components: HyperFlex
Other Components: VMware Horizon View
Benefits:
• Convert additional, seasonal resources to HPC
• Deliver remote access to desktops or certain
applications
• Implementation will help assess future VDI use cases
