Versions Compared

Old Version 2

changes.mady.by.user David Schmitz

Saved on

compared with

New Version 3

changes.mady.by.user David Schmitz

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

TimeItemWhoNotes

Firewall On Demand (FoD?)
  • (info page for FoD development https://wiki.geant.org/pages/viewpage.action?pageId=63965046)
  • Evangelos is in contact with the GRNET developers who originally developed FoD and continue to develop it further:
        • GRNET developers took very long time to respond regarding the new FoD version compatible with new Django library
        • So not to be delayed by this, T6 will perform testing/installation with old version (which has already all needed pilot FoD v1.5 user functionalities)
  • Testing of new FOD features on FOD test machines
            • Fully tested the port range feature developed by Tomáš (with real traffic)
            • Multi-tenant REST API: issue at changing rules solved by pull to newer git revision, only when creating rules a check is still performed whether there is already a rule with same attributes
            • Statistics graphs: current graphs are working basically, still some improvements necessary
            • GÉANT installation requirements/procedure:
                  • Tomáš will try to build a rpm with new FoD code, based on old rpm spec file, in combination with a script to allow for different python version with virtualenv
                  • Waiting for new installation test machine, will try so far with current development machine
  • Tomáš: idea to use merged Github repository
      • Currently official FoD repository administered by GRNET, and Tomáš's own FoD repository
      • => create merged one for better distributing our new code, maybe with official GÉANT account?
      • => Evangelos will check whether there already is such an account
  • Evangelos: In future FoD may not only support plain BGP FlowSpec and Scrubbing solutions like A10/CORSA, but also RTBH as filtering technology

DDoS Detection/Mitigation (D/M) WG
  • Radware Demo at GÉANT (Evangelos)
      • Presentation of Radware Demo was very impressing
      • DDoS mitigation solution more advance than A10, but too high price
  • Evangelos is interested in CESNET DDoS mitigation hardware solution
      • CESNET solution allows not only mitigation, but also integrated adaptable detection
      • Tomáš will create contact with relevant persons and provide initial documentation
      • And check when testing hardware would be available

Certificate Transparency (CT)
  • CT Server
    • Working on v1.0
      • Writing user/operator documentation is in progress
      • Various missing aspects: e.g. time zone support
      • Bugfixes for operational/technical issues found by DFN Cert/SUNET
  • Ivana proposed to present about CT to increase its visibility

F2F Meeting Planning
  • New Foodle poll for F2F meeting exists, but answer may be hard if place of meeting not know (because of unclear voyage duration)
  • So, first the potential locations have to be found. Candidates currently are:
        • Garching near Munich (LRZ)
        • Prague: possible
        • Rome: possible, but only after Summer
        • Stockholm: possible (e.g. June)
        • Cambridge: possible
  • For each of these potential location everyone should check how long travel might potentially be for she/him

Next VC

In 2 weeks: 09.07.2017, 14:15-15:15 CE(S)T

...