| Time | Item | Who | Notes |
|---|
| Firewall On Demand (FoD?) |
| - (info page for FoD development https://wiki.geant.org/pages/viewpage.action?pageId=63965046)
- Evangelos is in contact with the GRNET developers who originally developed FoD and continue to develop it further:
- GRNET developers took very long time to respond regarding the new FoD version compatible with new Django library
- So not to be delayed by this, T6 will perform testing/installation with old version (which has already all needed pilot FoD v1.5 user functionalities)
- Testing of new FOD features on FOD test machines
- Fully tested the port range feature developed by Tomáš (with real traffic)
- Multi-tenant REST API: issue at changing rules solved by pull to newer git revision, only when creating rules a check is still performed whether there is already a rule with same attributes
- Statistics graphs: current graphs are working basically, still some improvements necessary
- GÉANT installation requirements/procedure:
- Tomáš will try to build a rpm with new FoD code, based on old rpm spec file, in combination with a script to allow for different python version with virtualenv
- Waiting for new installation test machine, will try so far with current development machine
- Tomáš: idea to use merged Github repository
- Currently official FoD repository administered by GRNET, and Tomáš's own FoD repository
- => create merged one for better distributing our new code, maybe with official GÉANT account?
- => Evangelos will check whether there already is such an account
- Evangelos: In future FoD may not only support plain BGP FlowSpec and Scrubbing solutions like A10/CORSA, but also RTBH as filtering technology
|
| DDoS Detection/Mitigation (D/M) WG |
| - Radware Demo at GÉANT (Evangelos)
- Presentation of Radware Demo was very impressing
- DDoS mitigation solution more advance than A10, but too high price
- Evangelos is interested in CESNET DDoS mitigation hardware solution
- CESNET solution allows not only mitigation, but also integrated adaptable detection
- Tomáš will create contact with relevant persons and provide initial documentation
- And check when testing hardware would be available
|
| Certificate Transparency (CT) |
| - CT Server
- Working on v1.0
- Writing user/operator documentation is in progress
- Various missing aspects: e.g. time zone support
- Bugfixes for operational/technical issues found by DFN Cert/SUNET
- Ivana proposed to present about CT to increase its visibility
|
| F2F Meeting Planning |
| - New Foodle poll for F2F meeting exists, but answer may be hard if place of meeting not know (because of unclear voyage duration)
- So, first the potential locations have to be found. Candidates currently are:
- Garching near Munich (LRZ)
- Prague: possible
- Rome: possible, but only after Summer
- Stockholm: possible (e.g. June)
- Cambridge: possible
- For each of these potential location everyone should check how long travel might potentially be for she/him
|
| Next VC |
| In 2 weeks: 0928.0706.2017, 14:15-15:15 CE(S)T
|
