ISTITUTO NAZIONALE DI FISICA NUCLEARE

Similar documents
IEPSAS-Kosice: experiences in running LCG site

Scientific data processing at global scale The LHC Computing Grid. fabio hernandez

The LHC Computing Grid

The LHC Computing Grid

Introduction to Grid Infrastructures

where the Web was born Experience of Adding New Architectures to the LCG Production Environment

The Grid: Processing the Data from the World s Largest Scientific Machine

30 Nov Dec Advanced School in High Performance and GRID Computing Concepts and Applications, ICTP, Trieste, Italy

A High Availability Solution for GRID Services

Grid Computing a new tool for science

Andrea Sciabà CERN, Switzerland

CSCS CERN videoconference CFD applications

Virtualizing a Batch. University Grid Center

The INFN Tier1. 1. INFN-CNAF, Italy

ISTITUTO NAZIONALE DI FISICA NUCLEARE

The EU DataGrid Testbed

Benchmarking the ATLAS software through the Kit Validation engine

On the employment of LCG GRID middleware

Implementing GRID interoperability

Experience of the WLCG data management system from the first two years of the LHC data taking

CMS users data management service integration and first experiences with its NoSQL data storage

Data Management for the World s Largest Machine

Batch Services at CERN: Status and Future Evolution

Worldwide Production Distributed Data Management at the LHC. Brian Bockelman MSST 2010, 4 May 2010

The CMS Computing Model

Tier-2 structure in Poland. R. Gokieli Institute for Nuclear Studies, Warsaw M. Witek Institute of Nuclear Physics, Cracow

I Tier-3 di CMS-Italia: stato e prospettive. Hassen Riahi Claudio Grandi Workshop CCR GRID 2011

Workload Management. Stefano Lacaprara. CMS Physics Week, FNAL, 12/16 April Department of Physics INFN and University of Padova

CERN openlab II. CERN openlab and. Sverre Jarp CERN openlab CTO 16 September 2008

FREE SCIENTIFIC COMPUTING

Grid Challenges and Experience

Challenges and Evolution of the LHC Production Grid. April 13, 2011 Ian Fisk

DIRAC pilot framework and the DIRAC Workload Management System

Performance of R-GMA for Monitoring Grid Jobs for CMS Data Production

Interoperating AliEn and ARC for a distributed Tier1 in the Nordic countries.

ELFms industrialisation plans

MONTE CARLO SIMULATION FOR RADIOTHERAPY IN A DISTRIBUTED COMPUTING ENVIRONMENT

Garuda : The National Grid Computing Initiative Of India. Natraj A.C, CDAC Knowledge Park, Bangalore.

Analisi Tier2 e Tier3 Esperienze ai Tier-2 Giacinto Donvito INFN-BARI

Experience with LCG-2 and Storage Resource Management Middleware

Conference The Data Challenges of the LHC. Reda Tafirout, TRIUMF

Heterogeneous Grid Computing: Issues and Early Benchmarks

EU DataGRID testbed management and support at CERN

Grid Computing Activities at KIT

HEP Grid Activities in China

Grids and Security. Ian Neilson Grid Deployment Group CERN. TF-CSIRT London 27 Jan

The ALICE Glance Shift Accounting Management System (SAMS)

The GENIUS Grid Portal

Storage Resource Sharing with CASTOR.

EGEE and Interoperation

Overview. About CERN 2 / 11

ALHAD G. APTE, BARC 2nd GARUDA PARTNERS MEET ON 15th & 16th SEPT. 2006

D0 Grid: CCIN2P3 at Lyon

Figure 1: cstcdie Grid Site architecture

Travelling securely on the Grid to the origin of the Universe

Physics CMS Muon High Level Trigger: Level 3 reconstruction algorithm development and optimization

The LHC Computing Grid. Slides mostly by: Dr Ian Bird LCG Project Leader 18 March 2008

Constant monitoring of multi-site network connectivity at the Tokyo Tier2 center

WLCG Transfers Dashboard: a Unified Monitoring Tool for Heterogeneous Data Transfers.

PoS(ACAT)020. Status and evolution of CRAB. Fabio Farina University and INFN Milano-Bicocca S. Lacaprara INFN Legnaro

Distributing storage of LHC data - in the nordic countries

A New approach to Control Systems

Storage and I/O requirements of the LHC experiments

Data Transfers Between LHC Grid Sites Dorian Kcira

Prototypes of a Computational Grid for the Planck Satellite

CernVM-FS beyond LHC computing

First Experience with LCG. Board of Sponsors 3 rd April 2009

The EU DataGrid Fabric Management

glite Grid Services Overview

LHC COMPUTING GRID INSTALLING THE RELEASE. Document identifier: Date: April 6, Document status:

Austrian Federated WLCG Tier-2

High Throughput WAN Data Transfer with Hadoop-based Storage

Tier2 Centre in Prague

ATLAS software configuration and build tool optimisation

The LCG 3D Project. Maria Girone, CERN. The 23rd Open Grid Forum - OGF23 4th June 2008, Barcelona. CERN IT Department CH-1211 Genève 23 Switzerland

Monte Carlo Production on the Grid by the H1 Collaboration

Ivane Javakhishvili Tbilisi State University High Energy Physics Institute HEPI TSU

Status of KISTI Tier2 Center for ALICE

STATUS OF PLANS TO USE CONTAINERS IN THE WORLDWIDE LHC COMPUTING GRID

The Grid. Processing the Data from the World s Largest Scientific Machine II Brazilian LHC Computing Workshop

CERN and Scientific Computing

CrossGrid testbed status

e-science for High-Energy Physics in Korea

RUSSIAN DATA INTENSIVE GRID (RDIG): CURRENT STATUS AND PERSPECTIVES TOWARD NATIONAL GRID INITIATIVE

Detector Control LHC

AliEn Resource Brokers

( PROPOSAL ) THE AGATA GRID COMPUTING MODEL FOR DATA MANAGEMENT AND DATA PROCESSING. version 0.6. July 2010 Revised January 2011

GRID COMPUTING APPLIED TO OFF-LINE AGATA DATA PROCESSING. 2nd EGAN School, December 2012, GSI Darmstadt, Germany

DIRAC Distributed Infrastructure with Remote Agent Control

RADU POPESCU IMPROVING THE WRITE SCALABILITY OF THE CERNVM FILE SYSTEM WITH ERLANG/OTP

HEP replica management

CERN s Business Computing

Real-time grid computing for financial applications

Application of Virtualization Technologies & CernVM. Benedikt Hegner CERN

CouchDB-based system for data management in a Grid environment Implementation and Experience

Evaluation of the computing resources required for a Nordic research exploitation of the LHC

Compact Muon Solenoid: Cyberinfrastructure Solutions. Ken Bloom UNL Cyberinfrastructure Workshop -- August 15, 2005

Monitoring system for geographically distributed datacenters based on Openstack. Gioacchino Vino

Interconnect EGEE and CNGRID e-infrastructures

Support for multiple virtual organizations in the Romanian LCG Federation

Transcription:

ISTITUTO NAZIONALE DI FISICA NUCLEARE Sezione di Perugia INFN/TC-05/10 July 4, 2005 DESIGN, IMPLEMENTATION AND CONFIGURATION OF A GRID SITE WITH A PRIVATE NETWORK ARCHITECTURE Leonello Servoli 1,2!, Mirko Mariotti! 2, Francesco Truncellito 1 1) INFN, SezionediPerugia, I 06123 Perugia, Italy 2) Dip. Fisica, Univ. di Perugia, I-06123 Perugia, Italy Abstract We present a possible solution for the configuration and implementation of a GRID site with the Worker Nodes belonging to a private network, using LCFGng as a tool for managing the configuration, and PBS as batch queueing system, in the framework of the INFN GRID. PACS: 07.05.Bx Published by SIS Pubblicazioni Laboratori Nazionali di Frascati

1 Introduction 1.1 What is the GRID A computing GRID system (GRID) is a way to share computing power and data storage across a geographically distributed environment; hence the GRID defines an infrastructure that enables the integration of several kind of resources: 1. high-end computers; 2. fast networks; 3. databases; 4. scientific instruments. GRID applications often involve large amounts of data and/or computing power and also require also secure resource-sharing across organizational boundaries, and are not easily handled by today s internet and web infrastructure. All the software needed to build a GRID is generally called middleware and it shields the user from the complexities of the underlying technology, offering an interface to one large virtual computer. 1.2 How does it work There is no single standard architecture to implement a GRID. Many organizations and companies (such as IBM, Apple, etc.) have created their own GRID structure. Usually all the architectures are hierarchical. At the top there are the decisional nodes hosting several high level services, while at the bottom there are the worker nodes and the storage nodes that perform the very basic operations required to the GRID by the users. Figure 1 shows a generic grid architecture with 3 different kind of nodes: ffl Resource Broker: it is the managing node that keeps a database about the status information of every GRID site; it receives the job submit demands that must be distributed to the GRID sites. ffl Provider: it is the interface node among the Resource Broker and the Agents. Its principal tasks are: to collect the information about the status of the entire GRID site and to forward it to the Resource Broker, to accept from the latter the job submit requests, to distribute them to the local Agents and to return the output data to the node who initiated the job request. ffl Agent: it is a terminal node that executes the jobs which are assigned to it. 2

Figure 1: Generic Grid architecture 1.3 INFN and the GRID The interest of the National Institute for Nuclear Physics (INFN) in the GRID concept is due to the inherently international effort needed to design, build and operate large experiments at the particle colliders such as the Tevatron at FNAL and LHC at CERN. These collaborations, that rely on thousands of scientists, need to share the computing resources available and to use them as efficiently as possible, and all as a single tool. As of 2007, the LHC will host four experiments: ALICE (A Large Ion Collider Experiment), ATLAS (A Toroidal LHC ApparatuS), LHCB (Large Hadron Collider Beauty experiment), CMS (Compact Muon Solenoid)[1]. These detectors will enable the detection and recognition of thousands of particles which are generated when proton beams collide at rates of forty million times per second; the foreseen data recording rate is 1 PByte/year. This huge amount of data, that should be analysed by thousands of scientists, residing in dozens of countries, has led to a general interest for GRID technologies, and to an effort for developing, together with other scientific communities (biologists, weather forecasts, etc.), a new GRID infrastructure, driven 3

Figure 2: LCG Architecture by data handling and efficient CPU sharing. INFN has been one of the main institutions leading this software development, both participating to EU funded efforts, as well as promoting national initiatives. The outcome of the first EU funded project, DATAGRID, and of the related work, has been the middleware called LHC Computing GRID (LCG), which is currently managed by the LCG project at CERN [2]. This is the baseline of the deployed GRID, while its developments are carried on by the new EU initiative EGEE (European Grid Enabling E-Science). INFN-GRID is the INFN national infrastructure [3], based upon LCG version 2.3.X, that is linked to the international GRID, and is currently built upon 20 or so GRID sites, managed by more than one hundred scientist and engineers. In figure 2 the Architecture of the LCG middleware is shown and it is possible to notice the presence of five different kinds of nodes: ffl Resource Broker: it is the managing node and it is responsible for keeping infor- 4

mation on the status of the entire GRID, for collecting the requests coming from the users, and to distribute them to the GRID, performing matchmaking with the available resources. ffl Computing Element: it is the interface betweeen one GRID site and the rest of the GRID. It is responsible for keeping detailed knowledge of the GRID site and for distributing locally the requests sent by the Resource Broker. ffl Storage Element: it is responsible for the management of large amounts of disk space. ffl User Interface: it is an Agent that interfaces the user and the GRID. It sends the user s requests to the Resource Broker and it receives the output of the jobs. ffl Worker Node: it is an Agent that offers the CPU server functions. If a user wants to submit a job to the GRID, it must have an account on a User Interface, which supplies all the tools needed to submit and monitor the status of a job. The User Interface forward the user s request to the Resource Broker who decides which GRID site has the resources necessary to satisfy the job, and then informs the relevant Computing Element that there is a new job to run. The CE sends the job for the execution to a Worker Node that may use a Storage Element as cache area. Finally the Worker Node returns the output to the CE from which it is forwarded to the user. The current version of the middleware is LCG 2.3.1 and is based on Linux platforms RedHat 7.3 and Scientific Linux 3; with the next release only the Scientific Linux platform will be supported. The official tool used to create and maintain the LCG GRID site is LCFGng. 2 LCFGng Tools 2.1 History The Local Configuration system (LCFG) [4], is designed to manage and configure many workstations and servers within a single framework. The original version, developed in 1993, ran under Solaris, and later it was ported to Linux. Today, the versions supported are Red Hat 7 and 9. The latest version of LCFG is called LCFGng and from now on, for simplicity, it will be referred to as LCFG. 5

2.2 The environment LCFG is based on a central database where the definitions of every node and of the entire site are stored. All nodes will be automatically installed following the configuration stored in the central database. To change the settings of a single node, the corresponding configuration files in the LCFG server have to be modified. The LCFG architecture is designed to satisfy multiple requests: 1. Declarative configuration specification: every node has a configuration specification defined through files. 2. Devolved management: the responsibility for the installation of a site could be shared among several people, each one in charge of the configuration of a single aspect, because LCFG tools are capable of putting together all these pieces to create a complete profile for an individual node. 3. Variety of nodes: LCFG is capable of managing either nodes that share exactly the same configuration, or ones that have no aspect in common. 4. Update: LCFG contains tools capable of managing the entire site or single nodes when there is a change in the configuration. 5. Automation: all the steps (installation, configuration and management), are executed automatically. 6. Correctness: the configuration system should be able to configure systems completely from the declarative specifications with no manual intervention. The automation permits a high degree of confidence on the correctness of the configuration. 2.3 The Architetture The figure 3 show the architecture of the LCFG Framework: ffl The configuration of the entire site is created in many declarative files maintained on the central LCFG server. A node description is normally contained in a small number of configuration files, and usually, each file describes a single aspect of the machine. An include system, similar to the C++ language, forms a tree structure that describes all the node aspects. 6

Figure 3: LCFG architecture ffl The LCFG compiler compiles these source files, and creates a single XML profile for each machine. The profile contains all the configuration parameters, including variables and values for all aspects needed for the installation step. ffl A standard web server (as Apache), publishes all the profiles. The profile of each node is used, at startup time, to install the node. ffl If a node is already installed and a profile changes, the server sends to the client an UDP notification. The node then downloads this profile via HTTP and applies the changes. ffl Periodically the client sends an UDP acknowledgement to the server; this notification is stored and used to create an HTML web page, published by the server, that shows many informations about the client. Looking at this page, it is possible to monitor the status of all clients. 7

3 Standard and modified GRID site 3.1 Standard architecture A typical LCG 2.3.X installation is shown in figure 4. It consists of a single CE, one or more SEs, several WNs and optionally one or more UIs. In the standard architecture, all the GRID elements have only one network interface connected to the public LAN. Figure 4: Standard GRID site architecture On the LAN there is also an LCFG server that manages the installation of the GRID elements. The services necessary to assure the functionality of the GRID site are the following: ffl DNS (Hosted on the external LAN): every node should be registered on it. ffl DHCP (Hosted on the LCFG server): it is a non authoritative DHCP and it is used for netbooting the nodes. It assigns network parameters to the nodes and provides to every LCFG client the location of its profile. ffl Batch System and Scheduler (Hosted on the CE): it provides the resource management and the job control for the site, every WNs is a client of the Batch System. ffl Monitoring System (Hosted on CE and SE): it collects all the relevant informations from the WNs to monitor the use of the resources. In this architecture, an external job comes from the RB to the CE and is then assigned to a WN. In order to achieve this, between CE and WNs it must be possible to 8

exchange files in HostbasedAuthentication mode, i.e. among all the nodes of the site, the user password is not needed. 3.2 Modified architecture In several sites it is not possible to assign public IP addresses to all the nodes, due to the saturation of the assigned IP class. Hence, it is important to define a new configuration where all the worker nodes are on a private network. This will also simplify the security issues. Figure 5: Modified GRID site architecture The proposed architecture is shown in figure 5. All the GRID elements, other than the WNs, need to have two network interfaces. The first one, with a public IP address, to be used to communicate with the external world and the second one with a private IP address, to be used for the traffic inside the GRID site. A dedicated switch for the private network is also needed. 9

For this modified installation, some services have to be reconfigured and other features have to be added: ffl DHCP: It runs on the same machine as the LCFG server, but now it must serve two different networks because the public network elements (CE and SE) are configured as before while the private ones (WNs) need a different configuration. From now on, this machine will be called the Site Gateway (SG). ffl DNS: It is necessary to install a dedicated DNS server to resolve the addresses inside the private network. It can be installed on the SG. ffl WNs outbound connectivity: The SG has another important role. It has to be configured as the network gateway for the WNs so that they may have outbound connectivity needed for the data transfer operation requested by a job. ffl LCFG modifications: There are many changes to be made to the standard LCFG configuration files that come from LCG, mainly due to the configuration of the private network. 4 Implementation To implement the new GRID site structure, three sets of modifications have been made to the standard configuration. The first one is needed to build a functional private network infrastructure. The second one contains the changes related to the GRID elements configuration within the LCFG. Finally some post-installation tasks have also to be performed. 4.1 Private network infrastructure In a standard GRID site certain services, such as DNS, are provided by the external network, but in order to put the WNs on a private LAN, the site has to provide itself with such service, because the external network does not know about the internal one. The best place to put the DNS server is the SG because it should serve both the internal and the external network and it is the only node that can be manually configured. In fact, all the other nodes are managed via LCFG and it is quite difficult to manage the DNS this way. Every machine in the site has a NIC on the private LAN so on the DNS server a zone is configured mapping them, in order to allow the resolution of the names. This server is the primary DNS for all the GRID site elements because it is capable of resolving also the external names by querying the external DNS. The configuration of the DHCP server is divided in two sections: the first one defining the parameters for the bootstrap of the CE, SE and UI via the external NIC (same as 10

in the standard configuration), and the second one related to the bootstrap of the WNs via the internal NIC belonging to the private domain just defined. In order to allow outbound connectivity to the WNs, the Netfilter s rules have been inserted in the SG kernel using iptables. The same technique, with different rules, has to be used to allow the correct functioning of AFS on the WNs. 4.2 Site configuration via LCFGng The standard installation on LCG was not including the support for WNs on private LAN, and hence some modifications to the configuration have been made. The internal elements (i.e. the WNs) and the external ones (the others) have different names and parameters so the first thing needed is an LCFG variable (PRIVATE-NETWORK), defined in the site-cfg.h file, to choose between a standard installation and a modified one. When this variable is set to 1, several options became available and the most important ones are: ffl The configuration of two NIC instead of one, on the elements where it is needed. ffl The configuration of the batch system, to reflect the fact that the WNs are on the private network while the SE and CE are on the public one. In fact the torque mom on the WN identifies its server using the hostname and this implies, that in this configuration, we have to allow both names of the CE to be used for identification. 4.3 Post-installation tasks In some cases, depending on the services, need may arise to define some static routes on WNs so as to avoid that the traffic going to the SE, CE or UI uses the external NIC. The batch system may need some adjustement too, such as changing the server ACLs. 5 Conclusion We have installed and configured a GRID site with the WNs on a private network. All the necessary modifications have been included in the INFN-GRID release of the LCG middleware and in the related documentation, starting from version 2.1.0. We do plan to port this configuration in the future version of the LCG middleware. 6 Acknowledgment We would like to acknowledge E.Ferro for his kind advice. 11

References [1] http://cms.cern.ch/, http://atlas.cern.ch/, http://alice.cern.ch/, http://lhcb.cern.ch/ [2] http://lcg.web.cern.ch/lcg/ [3] http://grid-it.cnaf.infn.it/ [4] http://www.lcfg.org/ 12

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback