| Time | Item | Who | Notes |
|---|
| | Firewall On Demand (FOD) | | - (info page for FOD development https://wiki.geant.org/pages/viewpage.action?pageId=63965046)
- Testing of new FOD features on FOD test machines
- goal in the upcoming weeks
- is to fully test the port range feature developed by Tomáš, as well as the graphs statistics module and REST API by GRNET,
- eventually also on the first test machine which is close to production as it is connected with the production network
- and for the first test machine it has to be investigated how the new FOD and its modules can be deployed suitable for and according to GEANT installation techniques/procedures (e.g. puppet usage)
- Tomáš investigated and fixed a problem with the admin page on the second test machine which prevented config of new test users and corresponding IP address ranges which prevented in turn testing of port range feature with live traffic
- Now Tomáš is concentrating on installing the graphs statistics module from GRNET; currently there seem still to be some dependency issues regarding that.
|
| | DDoS Detection/Mitigation (D/M) WG | | - Tangui Coulouarn has sent nice overview about the DDoS D/M solution based on fastnetmon and exaBGP developed and used at DEIC
- Fastnetmon testing at GARR:
- Silvia and Nino are still working at there proposal for multi-domain use of fastnetmon where fastnetmon is used at institution side and can signal to upstream for mitigation based on local decision of
- Actually they cooperate with other colleagues and also a range of users (with different operating/management requirements) in GARR to create a full POC together with them in GARR
- Silvia/Nino will sent Tangui preliminarily some draft of their proposal so than Tangui can get a idea and can compare both solutions
- Example/Test-wise Attacks
- It would be nice to have some example attacks (e.g. by tools or researchers in that area) which could be used for testing DDoS D/M solutions
- DDoS D/M Survey:
- Evangelos sent reminder mails for the survey
- Up to now 20 answers from 18 different NRENs
|
| | RepShield/NERD | | - Finished work on support for periodic update of information
- used for blacklist updating
- used for DB cleaning management
- Some internal performance improvements
- First version of a reputation score (general, not yet per event type) calculated based on number of events and event sources per day for 14-day period
|
| | Certificate Transparency (CT) | | As Linus and Magnus are not here today David will contact them separately about status
|
| | F2F Meeting Planning | | - New Foodle poll for F2F meeting exists, but answer may be hard if place of meeting not know (because of unclear voyage duration)
- So, first the potential locations have to be found. Candidates currently are:
- Garching near Munich (LRZ)
- Prague: possible
- Rome: possible, preferably after Summer (e.g in June, May)
- Stockholm
- Cambridge: possible
- For each of these potential location everyone should check how long travel might potentially be for she/him
|
| | Next VC | | In 2 weeks: 05.04.2017, 14:15-15:15 CE(S)T
|
