Understanding HTCondor Networking Concepts and Best Practices

htcondor n.w
1 / 20
Embed
Share

Explore the world of HTCondor networking concepts through informative images covering topics such as fairy-tale networking, IPv6 integration, firewalled environments, shared port solutions, and more. Get insights on asking the right questions, working in a fairy tale setup, and addressing common networking challenges like firewall configurations and TCP port limitations.

  • HTCondor
  • Networking
  • IPv6
  • Firewall
  • Shared Port
rayaanacharya
vedaan Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. HTCondor Networking Concepts

  2. Disclaimers Not about configuration macros Not about host or daemon lookups Not about HTCondor internals 2

  3. Asking the Right Questions There will be a quiz at the end Start by reviewing fairy-tale networking then add IPv6 then add schedd firewalls then add startd firewalls End by passing the quiz (open-manual) 3

  4. Fairy-tale Networking Single network protocol All addresses publically routable No firewalls Fewer than ~25k simultaneous running jobs 4

  5. Working in a Fairy Tale negotiator collector schedd shadow* startd starter* * One shadow, starter per running job 5

  6. IPv6 negotiator collector schedd shadow startd starter IPv4 IPv6 6

  7. IPv6 + IPv4 negotiator collector schedd shadow startd starter startd starter IPv4 IPv6 7

  8. Shared Port Problem: Firewall Admin willing to open only one port Problem: only ~60k TCP ports Need one per shadow Shared Port Service Listens on single port for incoming connections Hands each connection to intended recipient 8

  9. Shared Port Fire wall schedd startd shared_port Internet starter 9

  10. Firewalled Submit Node negotiator collector schedd Wall startd starter shared port shadow Fire 10

  11. TCP Forwarding Host Problem: Private network with NAT Traverse firewall via port forwarding Allocate a public IP address Connections to public address forwarded by NAT to machine on private network Common in the Cloud 11

  12. Condor Connection Broker Problem: Private network with NAT Or firewall with no opening for HTCondor Traverse firewall by reversing connection Client sends connection request via broker Server initiates TCP connection to client Only bypasses one firewall Client and broker (CCB server) must have publically routable addresses 12

  13. CCB: Condor Connection Broker CCB Outbound firewall schedd startd Internet schedd 13

  14. NATd Execute Nodes negotiator collector/CCB schedd Wall NAT shared port shadow Fire startd starter 14

  15. Port Usage (Digression) Shadow for each running job In fairy-tale setup Each shadow uses two ports Limit of ~25k running jobs With shared port and CCB Shadow use no ports No network limit on number of running jobs 15

  16. Quiz 1. Why do schedds and central managers need to be mixed-mode in a pool split between IPv4 and IPv6 nodes? 2. Why use CCB on execute nodes? 3. Why use both CCB and shared port? 4. If both the schedd and the execute nodes are NATd, what do you do? 16

  17. Answer 1 Why do schedds and central managers need to be mixed-mode in a pool split between IPv4 and IPv6 nodes? They need to be able to talk to all execute nodes 17

  18. Answer 2 Why use CCB on execute nodes (and not submit nodes)? Easier to make submit nodes publically accessible (fewer of them) 18

  19. Answer 3 Why use both CCB and shared port? Can t use CCB for both schedd and startd No ports used for shadow, so no limit on number of running jobs 19

  20. Answer 4 If both the schedd and the execute nodes are NATd, what do you do? If same NAT, no problem TCP Forwarding Host for schedd 20

Related


Apache MINA: High-performance Network Applications Framework

Apache MINA: High-performance Network Applications Framework

eilidh
Modeling and Generation of Realistic Network Activity Using Non-Negative Matrix Factorization

Modeling and Generation of Realistic Network Activity Using Non-Negative Matrix Factorization

sidra
Automated Anomaly Detection Tool for Network Performance Optimization

Automated Anomaly Detection Tool for Network Performance Optimization

sana
Revolutionizing Network Management with Intent-Based Networking

Revolutionizing Network Management with Intent-Based Networking

manu
Network Compression Techniques: Overview and Practical Issues

Network Compression Techniques: Overview and Practical Issues

heron
Network Slicing with OAI 5G CN Workshop Overview

Network Slicing with OAI 5G CN Workshop Overview

justice
Network Design Challenges and Solutions in Business Data Communications

Network Design Challenges and Solutions in Business Data Communications

aviva
5G RAN Network Slicing and Architecture

5G RAN Network Slicing and Architecture

murphycase
Snort: An Open-Source Network Intrusion Detection System

Snort: An Open-Source Network Intrusion Detection System

farah
Data Flows and Network Challenges in Particle Physics Infrastructure

Data Flows and Network Challenges in Particle Physics Infrastructure

justus
Progress of Network Architecture Work in FG IMT-2020

Progress of Network Architecture Work in FG IMT-2020

lonan
Interconnection Networks Topology

Interconnection Networks Topology

maig591
Transportation Network Modeling and Analysis with C.Coupled SE Platform

Transportation Network Modeling and Analysis with C.Coupled SE Platform

choz_91
Human Disease Symptom Network: Understanding Disease Relationships Through Symptoms and Genes

Human Disease Symptom Network: Understanding Disease Relationships Through Symptoms and Genes

abija
Introduction to Network Analysis Using .NET

Introduction to Network Analysis Using .NET

colt_5
Meridian: An SDN Platform for Cloud Network Services

Meridian: An SDN Platform for Cloud Network Services

aki_enc
Enhancing Network Security with Software-Defined Snort and OpenFlow

Enhancing Network Security with Software-Defined Snort and OpenFlow

yazleenh
Network Metrics Through Centrality Analysis

Network Metrics Through Centrality Analysis

paraske
Network Analysis: Whole Networks vs. Ego Networks

Network Analysis: Whole Networks vs. Ego Networks

kayliee
Network Interference in CS590B/690B Lecture

Network Interference in CS590B/690B Lecture

runk_ara
Contribution of HALA Network to ATM Community and SESAR 2020: Achievements and Future Directions

Contribution of HALA Network to ATM Community and SESAR 2020: Achievements and Future Directions

jaz_hef
Network Function Virtualization (NFV) Overview

Network Function Virtualization (NFV) Overview

brey983

More Related Content