Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Date

Attendees

Goals

  • Status Updates of work items (FOD/RepShield), especially:
        • FoD v1.5 transition to production
        • FoD v1.6 pilot
            • Enhancement of FoD rule API
            • Extended FoD rule concept
            • Firewall-Rule-Updater script
            • DDoS-Testing
  • Status of DDoS Detection/Mitigation WG,:
        • GARR PoCs
  • Review Open Action Points from last VC(s)
  • Code on Github Issue solved (Tomas/Vaclav)
  • GDPR compliance
  • AOB
      • PSNC FoD Installation Issue

Discussion items

TimeItemWhoNotes

Firewall On Demand (FoD)
  • (info page for FoD development https://wiki.geant.org/pages/viewpage.action?pageId=63965046)
  • FoD v1.5 = FoD with new functionalities: rule range specification, current rule behaviour statistic graphs, multi-tenant rule control REST-API
  • FoD v1.6 = FoD with automated rule proposal from RepShield
  • FoD v1.5 transition to production
      • Further improvements for FoD v1.5
          • Statistic graphs now reflect immediately and accurately points in time when a rule is activated or deactivated
          • Added additional information for the graphs: e.g. time zone, current system time, and update interval
  • FoD v1.6 development
      • David prepared and conducted FoD demo at TNC:
          • FoD in general (productive v1.1); v1.5 including REST API examples; v1.6 including FRU prototype proposing rules out of NShaRP DDoS events (via Warden)
          • Demo had many interested visitors

DDoS Detection/Mitigation (D/M) WG

GARR DDoS D/M PoCs/Testing Framework

      • ARBOR and Radware PoC have been completed
      • Nino presented summary of the results, regarding
          • How PoCs were organized and conducted
          • Types, number and accuracy of attacks detected
          • Differences of, strengths, and weaknesses of investigated DDoS detection/mitigation solutions
          • Verification of detection and mitigation capabilities by self-injected DDoS attacks, including ways to inject them
      • Discussion how to share all these valuable results with the community, e.g., either by white paper or/and presentation at particular meeting(s), maybe via VC

GDPR Compliance

Next VC

In 2 weeks: 11.07.2018, 14:15-15:15 CE(S)T

Action items

  •  Tomáš: work on FoD v1.6 improved rule structure
  •  David: continue FirewallRuleUpdater development/testing
  •  David: test DDos testing tool provided by Tomáš
  •  David: review additions Evangelos' additions to FoD service template (https://wiki.geant.org/display/gn42jra2/Firewall-On-Demand+%28FoD%29+Service) to get acquainted with it
  •  all: next regular T6 VC: 11.07.2018, 14:15-15:15 CE(S)T