1 / 74

The Computing Infrastructure

CLEMSON. U N I V E R S I T Y. The Computing Infrastructure. July 30, 1997. Division of Computing and Information Technology. Agenda. Background Network Backbone Design & Connectivity Network Resource Access DCIT and Departmental Public Lab Access User Support and Training

bena
Télécharger la présentation

The Computing Infrastructure

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. CLEMSON U N I V E R S I T Y The Computing Infrastructure July 30, 1997 Division of Computing and Information Technology

  2. Agenda • Background • Network Backbone Design & Connectivity • Network Resource Access • DCIT and Departmental Public Lab Access • User Support and Training • Summary

  3. Background on Clemson IS • Large Systems Background • Strong Development Shop • Mainframe and Open Systems Expertise • Departmental LANs ruled 90’s until Novell Directory Services (NDS) • NDS populated in Summer 1995 (36,000 users) • Departmental LANs gone. More centralized management of the network. • NDS is centerpiece of security and authentication.

  4. Mission • Provide computing infrastructure. • Empower Users and Departments. • Provide guidance in selecting solutions based on industry standards. • Deploy solutions to meet the needs of institutional computing. • Provide user support and training.

  5. Network Backbone Design and Connectivity

  6. Networking @ Clemson • Core Backbone • Distribution • Access • Dorm Access • Off Campus Access • Extension Offices • Internet Access

  7. Core Backbone • FDDI 100Mbps ring • Connecting 8 Fiber Distribution Centers • FDDI connected routers

  8. Holms Lowry Sikes Strode Poole Vickery FDDI Core Backbone Brackett ITC

  9. Distribution • Distribute backbone connections to buildings. • Most buildings have two 10Mbps connections. • Implementing switched 100Mbps connections to buildings. • Labs within buildings are on a dedicated 10Mbps connection.

  10. Distribution Example

  11. Access • Category 5 cabling within buildings. • Switches are used to provide traffic segmentation. • Most buildings have 48 to 78 users per segment.

  12. Access • In the last year we have been connecting 24 port shared hubs to switched 10M segments for general use. • High bandwidth areas will get switched 10 or 100Mbps connections.

  13. Access Example 1

  14. Access Example 2

  15. Dorm Access • 2500+ dorm rooms have a 10BaseT Ethernet connection per bed. • We use DHCP to assign IP addresses. • This Fall there will be a WEB page for Dorm residents to signup for service. • Automation of the port activation.

  16. Off Campus Access • Partnered with MCI for dial up access. • Limited PPP connectivity free. • Any Internet Service Provider.

  17. CampusMCI • MCI Provides ALL equipment and lines. • Adds additional equipment when needed. • Direct connection to the Clemson Network. • Internet traffic uses MCI’s Internet connection.

  18. CampusMCI Cost to User • $14.95/month for 70 hours of connect time. • $0.95/ hour for additional connect time. • The hours 1am - 6am are FREE. • 800 service available at an additional $0.10/minute

  19. Free Dial Up Access • 52 lines for Dial Up network access. • Support Point to Point Protocol (PPP). • Session time limit 30 minutes. • Limited to the Clemson domain, no Internet access.

  20. Any Internet Service Provider • Faculty, Staff and Students can use their choice of Internet Service Providers to access Clemson Network resources.

  21. Extension Offices • All 46 County Extension Offices of South Carolina are connected to the Clemson Network via Bell South Frame Relay service. • Each office has at least 24 ethernet ports.

  22. Internet Access • BBN Planet provides a 3Mbps connection to Clemson from their Austell, Ga T-3 point of presence. • Will be converting to Info Avenue in Fall 1997.

  23. What’s Next? • Add the Calhoun Courts and Lightsey Bridge dorms to the network. • Additional buildings with 100Mbps connections to backbone. • Deploy additional switches with the buildings. • ATM network testing.

  24. Network Resource Access

  25. Goals • Promote collaborative computing • Intra-workgroup • Inter-workgroup • Faculty/Student • Individual/Group presence on the network. • Central management of computing • Distributed management of data • Single authentication of distributed systems. • Keep heterogeneous systems “homogeneous”

  26. Server Strategy & Management • Novell, NT, Unix, and OS/390 servers maintained by DCIT • DCIT provides hardware and Network Operating System (NOS). • DCIT administers backups. • DCIT performs user administration. • Group maintains data and security with help of a Tech Support Provider (TSP). • Virus Protection and Software Metering

  27. Automatic Userid System (AUS) Admissions Personnel Other NDS MVS AUS Unix Other

  28. Distribute Resource Management

  29. Personal Storage (User Data Servers) Office, Lab, or DialUp Any Faculty or Staff Member EmployeD Dorm, Lab, or DialUp Any Student StudentD

  30. Collaborative Storage - “Group Servers” (Faculty & Staff) EmployeD Group Server1 Group Server2

  31. Collaborative Storage - “App Servers” (Students) StudentD Applications Server(N)

  32. Collaborative Storage (Faculty and Students) EmployeD App Server StudentD Group Server1

  33. Printing Strategy Q Q OS/390 Q Q Unix Q Print Gateway ??? Mac PC PC PC

  34. NDS Design for Printing

  35. Electronic Mail Server: • Based on Sun Solaris. • No user accounts required on Solaris. • Server software developed at Clemson. • Multiple recipients / one copy of message. • Server based on POP/MIME Internet standard protocols. IMAP4 coming? • Eudora site license purchased by DCIT. • Listserver gaining wide spread acceptance and use. Class/section list automated.

  36. mainframe POPc UNIX POPc ListD Mail Server popD Mac POPc DOS POPc Windows POPc OS/2 POPc ? POPc Mail Server

  37. Mail Server: Statistics 1995 1996 1997*Category 14k 46k 85k Daily Average POP Connections 13k 36k 62k Daily Average Msgs Retrieved from Server 27k 48k 92k Average Msgs Sent using Server per day *based on partial year statistics through May 26, 1997.

  38. Employee Database Student Database ListD Mail Server popD Automated Email Distribution List & NDS Group Membership MVS OS/390 ListMGR Class Roles TCP/IP Departments TCP/IP NDS GroupMGR NLM

  39. WEB Serving • Institutional Servers • Department or Group Servers • Organizational Page Servers • Personal Page Servers • Administrative and Student Application Page Servers

  40. NDS web Security via NT/Unix/?

  41. Authentication Server • Too many userid/password combinations for each user to remember. • Need central set of secure servers that all systems use for authentication. • Clemson University Personal ID (CUPID). • Based on Automatic Userid System (AUS). • Idea born in interdepartmental task force. • Production on July 1, 1996.

  42. MAIL authC Unix authC WEB authC Sun authC Oracle authC NT authC mainframe authC Netware authC Authentication Server

  43. NTServer(4.0) MAIL(solaris) Mainframe(MVS) AuthClient AuthClient AuthClient N D S RACF Application POPd Website Onlines VTAM IntranetWare Server A IntranetWare Server B IntranetWare Server C AUTHSERV.NLM AUTHSERV.NLM AUTHSERV.NLM Linux AuthClient Application Apache TN3270 Netscape Login.exe Eudora User Workstation (‘95/Mac/NT Workstation)

  44. Authentication Server • NLM is multithreaded. • Clients use common code base. • Clients have built-in failover capability. • Communication based on TCP/IP sockets. • >90% successful password checks complete in less than 0.1 seconds. • >2 million requests serviced by primary server over a 6 week period. 50,000/day

  45. NDS Authentication through NT/Unix/other To the WEB? Application: Employee Info System (EIS) Type: WEB Server OS: Windows NT 4.0 Server Enabling App: Website/Visual Basic

  46. Server Auth Client Using NDS Security Across the Intranet Authentication Server NDS Authenticated Client NT 4.0 AUTHSERV NLM NDS Netscape IIS 32bit DLL Page request CheckEquiv Check Security Equivalence Locate user object and run equivalence list.

  47. AUTHSERV Client Functions • Password Check • Password Change • Resolve to Fully Distinguished Name • Check Security Equivalence • Check 3rd Party Access Rights • Return Group Membership • Misc Administrative Functions

  48. Caldera OpenLinux and Apache • WEB gateway to Netware File System. File Server File Server Browser Browser Caldera OpenLinux File Server Browser AuthC File Server Browser File Server AuthServer

  49. Web Interface to Home Directories via Authserv NDS Gateway Application: Personal Pages Type: WEB Server OS: Linux Server Enabling App: Apache/Caldera http://www.clemson.edu/~acollin

  50. Web Interface to Department Pages http://dcitnds.clemson.edu/CSO/depts/maint Application: Departmental Pages Type: WEB Server OS: Linux Server Enabling App: Apache/Caldera

More Related