You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 7 Next »

Date

Attendees

  • Silvia d'Ambrosio
  • Nino Ciurleo
  • Marco Maletta
  • Evangelos Spatharas
  • Tomáš Čejka
  • Václav Bartoš
  • David Schmitz

Goals

  • Status Updates of work items (FOD/SecEventProcessing/CT)
  • Status of DDoS Detection/Mitigation WG
  • F2F-Meeting-Planning
  • Review Open Action Points from last VC(s)
  • AOB

Discussion items

TimeItemWhoNotes
 FOD Status 
  • second testing machine for newest github FOD is ready

  • David will now try to get it to run (install dependencies, config, etc.) and then investigate new REST API

 DDoS Detection/Mitigation WG 

- There was a recent first meeting between GEANT and Xantaro company (service integrator) about a potential DDoS Washing Mashine in GEANT

  (also to compare it with the Washing machine appliance solution offered by A10 company)

- at 10.10 there will be second meeting where a potential solution for the Washing Maschine design is planned

- after this Evangelos may share the design/planning information with our group

 

Nino will put all available information about Radware DDoS solution in wiki

 

- GARR (operations team) would like to get introduction about NSharp

-> Evangelos will prepare a presentation (30 min + questions) for this, DS will create a foodle for anyone interested

 

DDoS survey

 - GARR: add question for role of person filling survey

 - Evangelos: will liaise with Beatrix (Business Relationship Mgr) who is very experienced with surveys and show her the survey

 

 RepShield/NERD Status 

Blacklist Module:
- Storing information about whether an IP address is blacklisted
- standard NERD config file used for config of blacklist
- Now: in progress: show information in GUI
- Idea: also include blacklists for domain names ?


EDUGain login:
 - currently EDUgain login works only if Edu Person Principal name (EPPN) attribute is sent back by EDUgain Identity Provider (IDP),
 - at least IDP of LRZ institution is only doing this if certain point meta data regarding the code of conduct from the Shibboleth Service Provider (NERD in this case) are fulfilled
 - NERD EDUgain login component has now been adapted for this, but still some administrative actions in CESNET are needed to get it working


Inclusion of information from shodan.io:
- services which scan internet for open ports
-> idea: include this info for "bad" IP addresses in NERD

 CT Status 

David will ask Linus/Magnus, who are on NORDUnet Conference these days, separately about status

 

 F2F Meeting Planning Evangelos will update its maybe date answers
 Next regular T6 VC 05.10.2016, 14:00-14:30 CEST

Action items

  • David: get newest github version of FOD running on new test machine and investigate REST API
  • Nino: put available information about Radware DDoS solution in wiki
  • Evangelos: prepare a presentation (30 min + questions) for information about NSharp
  • David: create a foodle for NSharp presentation
  • GARR: add question for role of person filling survey
  • Evangelos: liaise with Beatrix (BizRelshipMgr) who is very experienced with surveys and show her the survey

  • David: ask Linus/Magnus about CT status

  • Evangelos: update maybe dates in potential F2F foodle

  • all: Next regular T6 VC: 05.10.2016, 14:00-14:30 CEST

     

     

  • No labels