ESnet's Science DMZ is Focus of New Library of Training Videos Aimed at Global Audience
ESnet, Network Startup Resource Center Combine Expertise to Spread the Word
January 10, 2017
Contact: Jon Bashor, jbashor@lbl.gov, 510-501-2230
For members of the established research and education (R&E) networking community, attending conferences or sitting in on workshop sessions is the normal way to learn about the latest equipment, architecture, tools and technologies.
But for network engineers striving to establish basic R&E infrastructure where bandwidth and other resources are scarce, the University of Oregon’s Network Startup Resource Center (NSRC) is often the primary information conduit. NSRC staff travel to emerging nations in Africa, Asia-Pacific, Middle East and South America where they hold intensive hands-on training courses combined with direct engineering assistance to bring institutions up to speed.
And for the second time in a year, ESnet and the NSRC have produced and released a library of short explanatory videos to help network engineers around the world gain basic knowledge, set up basic systems and drill down into areas of specific interest. In December, 15 videos detailing the Science DMZ network architecture were posted, covering the background and structure, specific designs, and techniques and technology.
The Science DMZ video library complements the 29-video perfSONAR library released in July 2016.
“The goal is to make the information more accessible to networking staff, in the U.S. and particularly in emerging economic areas where institutions are trying to bootstrap a research network,” said ESnet Network Engineer Eli Dart, who developed the Science DMZ concept with Brent Draney of the National Energy Research Scientific Computing Center (NERSC). Both ESnet and NERSC are DOE Office of Science User Facilities managed by Lawrence Berkeley National Laboratory.
While many networks were designed to support millions of small connections and rely on firewalls to provide security, R&E networks are increasingly called on to move massive research data sets from experiments or science simulations, which slow to an ooze when they encounter firewalls. The Science DMZ architecture provides a secure network enclave that safely and quickly moves large data sets between scientific facilities. With support from the National Science Foundation, more than 100 universities around the U.S. have deployed Science DMZs to enhance data transfers.
“We were at a university recently and discussed the Science DMZ several times during our workshop,” said Hervey Allen, NSRC’s assistant director. “The network there had the traditional design of a big old firewall that filtered everything -- it just throttled data throughput.”
Partially funded by the National Science Foundation, Google and other organizations, the NSRC works directly with the indigenous network engineers and operators who develop and maintain the Internet infrastructure in their respective countries and regions by providing technical information, engineering assistance, training, donations of networking books, equipment and other resources. The end goal in this work is to make it easier for local scientists, engineers and educators to collaborate via the Internet with their international colleagues by helping to connect communities.
Allen said that while networks capable of carrying 20 to 40 megabits a second may not be overly impacted by firewalls, once the bandwidth reaches a few gigabits, “the firewall just kills them.”
In places where high-speed networking is still in nascent stages, such as universities in emerging regions, installing Science DMZs on low-speed connections is useful and helps pave the way to greater capabilities as bandwidth grows. “Often, they never think they’ll get up to speeds of multiple gigabits, but in a few years they are often at those rates,” Allen said.
Dart said another advantage of the Science DMZ architecture is that it is modular. “You can start small and grow incrementally—you don’t have to jump in all at once,” he said. “As an organization does more with its cyber-infrastructure, the components can be upgraded and as more researchers use the network, more sites can be added.”
Technology meets sociology
While the technology is critical, Dart and Allen both note that sociological factors are at least as important in helping organizations bootstrap their networks.
“Our partnership is so important in that we bring real-world operational understanding to these collaborations, but there is also a strong sociological aspect to making them work,” Dart said. “There are smart people everywhere in the world and NSRC finds them and teaches them critical knowledge and skills in person. The end result is that we are helping connect more people in more ways.”
Allen said that when the NSRC staff hold a technical training workshop, the participants may not yet have the skills to diagnose problems and together they prioritize steps. In other cases, the local staff may know about the bottlenecks, but institutional administrators want confirmation from outside experts before approving upgrades.
The range of challenges encountered by NSRC staff span a wide spectrum, Allen said, including no fiber--just copper wire or even multiple, separate DSL links across several buildings for connectivity. In some cases, campuses might daisy-chain together switches as they grow the local network organically. But even when an internet service provider comes in with high-bandwidth fiber, the local networks don’t necessarily see a big difference in performance, particularly at the desktop.
The video libraries provide NSRC with additional material to use when helping local staff plan network deployments and upgrades.
“It’s very cool when you see that a group viewed the educational video content and actually implemented the upgrades after they came up with a plan, deployed new infrastructure, and achieved a dramatic increase in data transfer rates,” Allen said.
In the coming year, NSRC staff will be organizing technical training workshops with local partners in Vietnam, Costa Rica, Indonesia, Malaysia, India, Kenya, Pakistan, Rwanda and many other countries, Allen said, and as part of the preparation participants will be pointed to watch the videos in advance.
For Dart, making the videos was also educational. At major meetings and conferences, such information is usually presented in longer presentations, rather than in a series of short bursts.
“It’s a different approach to take a large idea and break it down into smaller, digestible components,” Dart said. “In this way, we hope to make the information much more accessible to a much wider audience.”
About Computing Sciences at Berkeley Lab
High performance computing plays a critical role in scientific discovery. Researchers increasingly rely on advances in computer science, mathematics, computational science, data science, and large-scale computing and networking to increase our understanding of ourselves, our planet, and our universe. Berkeley Lab’s Computing Sciences Area researches, develops, and deploys new foundations, tools, and technologies to meet these needs and to advance research across a broad range of scientific disciplines.