| Firewall On Demand (FoD) |
| - (info page for FoD development https://wiki.geant.org/pages/viewpage.action?pageId=63965046)
- FoD v1.5 = FoD with new functionalities: rule range specification, current rule behaviour statistic graphs, multi-tenant rule control REST-API
- FoD v1.6 = FoD with automated rule proposal from RepShield
- FoD v1.5 transition to production
- Evangelos has updated the service template; additions need to be reviewed by David
- Some improvement/ bug fixes by David for FoD v1.5
- Running SNMP updates no longer blocking update of FoD rules, can now run in parallel
- Found and solved issues of statistics not shown for rules which used fields "source ports" and "destination ports" together
- FoD v1.6 development
- Introduction to new more general rule FoD concept
- Tomáš is in progress to adapt FoD rule internals and corresponding REST API to introduce a new complex rule structure which allows multiple source prefixes to be associated to a single rule in FoD
- Václav has improved FlowMon Warden collector script, e.g., swapping source and destination fields to correctly reflect attacker and victim of a (D)DoS attack
- David is working on enhancing FoD rule API to make it fully useful for FRU
- Creation of rules in INACTIVE state is possible
- Possibility to fully delete rules via REST API instead of only light-weight delete by settings to INACTIVE
- Listing of all rules via REST API a user is authorized to edit instead of only those which he created
- David is preparing TNC demo, including REST API examples and FRU prototype
|